A web page based fuzzer that generates random JS statements then fuzz in the web-browser.
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Failed to load latest commit information.
arrayy
classy Add files via upload Oct 16, 2017
deletey Add files via upload Oct 16, 2017
domy add dom fuzz (only init.js) and fix a typo Oct 18, 2017
enumy Add files via upload Oct 16, 2017
functiony Add files via upload Oct 16, 2017
gettersettery/getter Add files via upload Oct 16, 2017
mathy
regexy Add files via upload Oct 16, 2017
runtime Add files via upload Oct 16, 2017
stringy Add files via upload Oct 16, 2017
README.md blah blah blah Oct 18, 2017
lucky-jsfuzz-chrome.html
sample-out.html Add files via upload Oct 16, 2017

README.md

lucky-js-fuzz

Html that generates random js statements then fuzz in the web-browser.

Usage:

a) put all of those files under a web server

b) visit lucky-jsfuzz-chrome.html

please notice the last line of lucky-jsfuzz-chrome.html: outputAllThingsHTMLFormat(false);
if you want to run the script instantly in the web-browser, you should change the arugment 'false' to 'true'.

Sample output:

Please check sample_out.html

This html file was generated by every type of output limited to 3, recommend value is 12.

Contact me:

Wenxiang Qian (aka blastxiang), leonwxqian#gmail.com

Blog: http://nul.pw

PS

I am not a pro on writing Javascript, and this fuzzer was written in a hurry. So the project is written in a very old yet ugly '90s style.

It was formerly going to be used for fuzzing NScript, a script evaluation engine used in the Windows Defender, so there're only basic data type supported here. I will update often as I am prepare to use this to do more fuzzing work in the future.