GitHub - EMResearch/EvoMaster: The first open-source AI-driven tool for automatically generating system-level test cases (also known as fuzzing) for web/enterprise applications. Currently targeting whitebox and blackbox testing of Web APIs, like REST, Gra
EvoMaster (www.evomaster.org) is the first (2016) open-source AI-driven tool that automatically generates system-level test cases for web/enterprise applications. This is related to Fuzzing. Not only EvoMaster can generate inputs that find program crashes, but also it generates small effective test suites (e.g., in JUnit format) that can be used for regression testing. EvoMaster is an AI driven to
Download SDL Regex Fuzzer from Official Microsoft Download Center
Overview Regular expression patterns containing certain clauses that execute in exponential time (for example, grouping clauses containing repetition that are themselves repeated) can be exploited by attackers to cause a denial-of-service (DoS) condition. SDL Regex Fuzzer is a tool to help test regular expressions for these potential vulnerabilities during the Verification phase of the Microsoft S
fuzzdb - Project Hosting on Google Code
FuzzDB was created to increase the likelihood of finding application security vulnerabilities through dynamic application security testing. It's the first and most comprehensive open dictionary of fault injection patterns, predictable resource locations, and regex for matching server responses. Attack Patterns - FuzzDB contains comprehensive lists of attack payload primitives for fault injection t
Chance
Chance Acknowledgements & Thanks Usage bower browser cli node requirejs seed function Basics bool falsy character floating integer letter natural prime string Text paragraph sentence syllable word Person age birthday cf cpf first gender last name prefix ssn suffix Thing animal Mobile android_id apple_token bb_pin wp7_anid wp8_anid2 Web avatar color company domain email fbid google_analytics hashta
Microsoft Code Digger - Visual Studio Marketplace
Code Digger analyzes possible execution paths through your .NET code. The result is a table where each row shows a unique behavior of your code. The table helps you understand the behavior of the code, and it may also uncover hidden bugs. Through the new context menu item "Ge... OverviewCode Digger analyzes possible execution paths through your .NET code. The result is a table where each row shows
Credit Card Numbers Generator | Get Fake Credit Card Numbers for Testing Purposes
What constitutes a Valid Credit Card Number? A valid credit card number (also known as Primary Account Number - PAN) has several fields and each of them has a meaning. For the technically inclined, this number complies to the ISO/IEC 7812 numbering standard. An contains a six-digit issuer identification number (IIN), an individual account identification number, and a single digit checksum. The fir
Database test data generator - Fill your database with random test data!
Generate test data for your database Quick recipes to test real applications with random data Table Structure: Export Format: Generated rows: Use an existing data model and customize it to mimick your table structure or create one from scratch. # Column title Data type Delete Add Another Column Clear table Why do I need to fill a database with random data? When developing an application, you would
fuzzing.html#003
このウェブページでは、「脆弱性検出の普及活動」(*1)で公開した「ファジング活用の手引き」等の「ファジング」(*2)に関する手引書などを紹介しています。これらの手引書などをご活用いただき、ソフトウェア製品の開発ライフサイクルへのファジング導入につながり、ソフトウェア製品の脆弱性が減少することを期待します。 ファジングコンテンツ一覧
2008-11-02
ちょっと作成したWebアプリケーションに脆弱性があるかをきちんとチェックしないといけない羽目になったので調べてみた. 出来ればフリーで,無ければ有償でもいいので.いや,やっぱりフリーで... 調べて実際にインストールや使ってみた順に載せてみます. Nessus http://www.nessus.org/nessus/ フリーでは一番使いやすいサーバ脆弱性診断ツールかな.有名だし. でもサーバの脆弱性診断という位置づけが強い MultiInjector released - automatic parallel website Injector / Defacer http://chaptersinwebsecurity.blogspot.com/2008/10/multiinjector-released-automatic.html Pythonの2.4以上で動作 Windowsでも使
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
GitHub - rohanpadhye/JQF: JQF + Zest: Coverage-guided semantic fuzzing for Java.
GitHub - schemathesis/schemathesis: Automate your API Testing: catch crashes, validate specs, and save time
GitHub - meeshkan/unmock-js: Fuzz test your REST API calls
GitHub - skovy/cooky-cutter: 🍪 Object factories for testing in TypeScript
dubzzz/fast-check: Property based testing framework for JavaScript (like QuickCheck) written in TypeScript
GitHub - typeetfunc/runtypes-generate: Transform runtypes type to jsverify arbitrary for generate sample of data
GitHub - microsoft/pict: Pairwise Independent Combinatorial Tool
GitHub - zimmski/tavor: A generic fuzzing and delta-debugging framework
GitHub - jsverify/jsverify: Write powerful and concise tests. Property-based testing for JavaScript. Like QuickCheck.
The CERT Division | Software Engineering Institute
GitHub - Marak/faker.js: What really happened with Aaron Swartz?
