Difference between revisions of "Fuzzing"

Revision as of 08:21, 8 April 2007

This is a first attempt to collect data on free software fuzzing tools.

List of
- http://www.infosecinstitute.com/blog/2005/12/fuzzers-ultimate-list.html
- http://www.hacksafe.com.au/blog/category/fuzz-testing/
The Art Of Fuzzing
JBroFuzz
Digital Dwarf products
As Debian packages:
- fuzz - stress-test programs by giving them random input
- zzuf - transparent application input fuzzer
Debian packages, not sure if they automate fuzzing but they can be useful
- bfbtester - Brute Force Binary Tester
- irpas - Internetwork Routing Protocol Attack Suite
- mozilla-livehttpheaders - Adds information about the HTTP headers to Iceweasel and Iceape
- netsed - The network packet altering stream editor
- python-scapy - Packet generator/sniffer and network scanner/discovery
- spikeproxy - Web application security testing proxy

@@ Line 6: / Line 6: @@
 ** http://www.hacksafe.com.au/blog/category/fuzz-testing/
 * [http://sourceforge.net/projects/taof/ The Art Of Fuzzing]
+* [http://sourceforge.net/projects/jbrofuzz JBroFuzz]
+* [http://www.digitaldwarf.be/products.html Digital Dwarf products]
 * As Debian packages:
 ** [http://fuzz.sourceforge.net/ fuzz] - stress-test programs by giving them random input
 ** [http://sam.zoy.org/zzuf/ zzuf] - transparent application input fuzzer
-* Debian packages, not sure if they automate fuzzing but they allow injection of crafted data
+* Debian packages, not sure if they automate fuzzing but they can be useful
+** bfbtester - Brute Force Binary Tester
-** netsed - The network packet altering stream editor
+** irpas - Internetwork Routing Protocol Attack Suite
 ** mozilla-livehttpheaders - Adds information about the HTTP headers to Iceweasel and Iceape
+** netsed - The network packet altering stream editor
+** [http://www.secdev.org/projects/scapy/ python-scapy] - Packet generator/sniffer and network scanner/discovery
+** spikeproxy - Web application security testing proxy