Home > IT, Tools > Fuzzing Tools

Fuzzing Tools

January 15th, 2007 Leave a comment Go to comments

Gadi Evron had a rather large list of fuzzing tools which were posted today to the fuzzing mailing list.

The list included:

  • zzuf - A transparent application input fuzzer.
  • IPC Fuzzing Tools - A Collection of tools for fuzzing Windows Interprocess Communication mechanisms.
  • jCUTE - A Java implementation of CUTE ( Concolic Unit Testing Engine ). A "productive way of combining fuzzing with static analysis".
  • Joxean's Fuzzer - Two Python Fuzzers... One for PostgreSQL and one for Informix.
  • Akathisia - A Windows RPC Fuzzer.

I'm going to add WebFuzz... my series of cheesy Python scripts for fuzzing HTTP (to a minor extent).

Other fuzzers that weren't mentioned but that people should be aware of:

  • FileFuzz - A Windows-based Graphical File Format Fuzzer from iDefense.
  • COMRaider - A Tool designed to fuzz COM Object Interfaces from iDefense.
  • SPIKEfile - A Linux-based file format fuzzer from iDefense.
  • notSPIKEfile - A Linux-based file format fuzzer from iDefense.
  • WebFuzz - A Graphical Web Fuzzer, presented by Michael Sutton at RECON but oddly enough not on the iDefense page.
  • fuzzball2 - A TCP/IP options fuzzer.
  • FuzzySniffAndSend - A Network Fuzzer, it sniffs data and then resends various mangled versions of the captures data.
  • PeachFuzz - A Clear Text Protocol Fuzzer -- Includes templates for FTP, SMTP, IMAP4 and POP3.
  • Fuzzer.pl - Another plain-text protocol fuzzer from CIRT.DK.
  • Bluetooth Stack Smasher -- A Bluetooth fuzzer.
  • Radius Fuzzer - A Radius Server Fuzzer, written in C.
  • Hamachi - A Browser Fuzzer
  • fsfuzzer - A Filesystem Fuzzer.
Categories: IT, Tools Tags:
  1. No comments yet.
  1. No trackbacks yet.