Average Ratings 0 Ratings

Total
ease
features
design
support

No User Reviews. Be the first to provide a review:

Write a Review

Average Ratings 0 Ratings

Total
ease
features
design
support

No User Reviews. Be the first to provide a review:

Write a Review

Description

LibFuzzer serves as an in-process, coverage-guided engine for evolutionary fuzzing. By being linked directly with the library under examination, it injects fuzzed inputs through a designated entry point, or target function, allowing it to monitor the code paths that are executed while creating variations of the input data to enhance code coverage. The coverage data is obtained through LLVM’s SanitizerCoverage instrumentation, ensuring that users have detailed insights into the testing process. Notably, LibFuzzer continues to receive support, with critical bugs addressed as they arise. To begin utilizing LibFuzzer with a library, one must first create a fuzz target—this function receives a byte array and interacts with the API being tested in a meaningful way. Importantly, this fuzz target operates independently of LibFuzzer, which facilitates its use alongside other fuzzing tools such as AFL or Radamsa, thereby providing versatility in testing strategies. Furthermore, the ability to leverage multiple fuzzing engines can lead to more robust testing outcomes and clearer insights into the library's vulnerabilities.

Description

WebReaver is a sophisticated and user-friendly automated tool designed for web application security testing, compatible with Mac, Windows, and Linux, making it ideal for both beginners and experienced users. This tool enables you to efficiently evaluate any web application for a wide array of vulnerabilities, ranging from critical issues like SQL Injection and command Injection to less severe concerns, including session management flaws and information leakage. It is important to note that automated testing methods, which often involve scanning and fuzzing by sending potentially harmful data, can pose significant risks to the web applications they assess. Consequently, it is advisable to limit the use of such automated tests to environments that are designated for demonstration, testing, or pre-production to prevent unintended damage. Additionally, WebReaver's versatility allows it to adapt to various testing scenarios, ensuring comprehensive coverage of potential security weaknesses.

API Access

Has API

API Access

Has API

Screenshots View All

Screenshots View All

Integrations

Atheris
C
C++
ClusterFuzz
Fuzzbuzz
Google ClusterFuzz
Jazzer

Integrations

Atheris
C
C++
ClusterFuzz
Fuzzbuzz
Google ClusterFuzz
Jazzer

Pricing Details

Free
Free Trial
Free Version

Pricing Details

No price information available.
Free Trial
Free Version

Deployment

Web-Based
On-Premises
iPhone App
iPad App
Android App
Windows
Mac
Linux
Chromebook

Deployment

Web-Based
On-Premises
iPhone App
iPad App
Android App
Windows
Mac
Linux
Chromebook

Customer Support

Business Hours
Live Rep (24/7)
Online Support

Customer Support

Business Hours
Live Rep (24/7)
Online Support

Types of Training

Training Docs
Webinars
Live Training (Online)
In Person

Types of Training

Training Docs
Webinars
Live Training (Online)
In Person

Vendor Details

Company Name

LLVM Project

Founded

2003

Website

llvm.org/docs/LibFuzzer.html

Vendor Details

Company Name

Websecurify

Founded

2012

Country

United Kingdom

Website

webreaver.com

Product Features

Product Features

Vulnerability Scanners

Asset Discovery
Black Box Scanning
Compliance Monitoring
Continuous Monitoring
Defect Tracking
Interactive Scanning
Logging and Reporting
Network Mapping
Perimeter Scanning
Risk Analysis
Threat Intelligence
Web Inspection

Alternatives

Atheris Reviews

Atheris

Google

Alternatives

afl-unicorn Reviews

afl-unicorn

Battelle
Vega Reviews

Vega

Subgraph
Honggfuzz Reviews

Honggfuzz

Google
Jazzer Reviews

Jazzer

Code Intelligence
API Fuzzer Reviews

API Fuzzer

Fuzzapi