sourcepulse logobeta
HomeBrowse all repos

brainstorm  by Invicti-Security

Web fuzzing tool using local LLMs for optimized discovery

created 8 months ago
316 stars

Top 86.7% on sourcepulse

GitHubView on GitHub
Project Summary

This tool enhances web fuzzing by integrating local Large Language Models (LLMs) with ffuf for intelligent directory and file discovery. It's designed for security researchers and penetration testers seeking to uncover hidden endpoints and files more efficiently than traditional fuzzing methods.

How It Works

Brainstorm leverages LLMs via Ollama to analyze a target website's structure and generate contextually relevant suggestions for potential paths and filenames. It iteratively extracts initial links, uses the LLM to predict new paths, fuzzes these suggestions with ffuf, and refines its approach based on discovered content. This AI-driven approach aims to optimize the fuzzing process by focusing on more probable targets.

Quick Start & Requirements

  • Install: Clone the repository, install Python dependencies (pip install -r requirements.txt), ensure ffuf is in your PATH, and have Ollama running locally.
  • Prerequisites: Python 3.6+, ffuf, Ollama, and a downloaded Ollama model (e.g., qwen2.5-coder:latest).
  • Usage: python fuzzer.py "ffuf -w ./fuzz.txt -u http://example.com/FUZZ" or python fuzzer_shortname.py "ffuf -w ./fuzz.txt -u http://example.com/FUZZ" "BENCHM~1.PY".
  • Docs: Blog Post

Highlighted Details

  • Combines LLM-driven path generation with ffuf for optimized web fuzzing.
  • Includes a specialized variant (fuzzer_shortname.py) for discovering legacy 8.3 filenames.
  • Supports customizable LLM models, cycles, and status codes.
  • A benchmarking script (benchmark.py) is available to compare different LLM models.

Maintenance & Community

The project is maintained by Invicti Security. Further community engagement details are not specified in the README.

Licensing & Compatibility

The project is released under the MIT License, permitting commercial use and integration with closed-source projects.

Limitations & Caveats

The effectiveness of the LLM-driven suggestions is dependent on the chosen model and its training data. The tool requires local setup of Ollama and specific LLM models, which can have significant resource requirements.

Health Check
Last commit

8 months ago

Responsiveness

Inactive

Pull Requests (30d)
0
Issues (30d)
0
Star History
13 stars in the last 90 days

Explore Similar Projects

PromptFuzz by FuzzAnything

0.4%
280
Fuzzing tool for automated fuzz driver generation
created 1 year ago
updated 4 days ago
Starred by Dan Guido Dan Guido(Cofounder of Trail of Bits).

ChatAFL by ChatAFLndss

0.6%
348
Protocol fuzzer guided by LLMs (NDSS'24 paper)
created 1 year ago
updated 1 month ago

fuzz4all by fuzz4all

0.4%
275
Fuzzer using LLMs for universal input generation
created 1 year ago
updated 9 months ago
Starred by Jeffrey Morgan Jeffrey Morgan(Cofounder of Ollama).

ollama-grid-search by dezoito

0.8%
796
Desktop app to evaluate/compare LLMs
created 1 year ago
updated 3 months ago

LLMFuzzer by mnns

0.7%
303
Fuzzing framework for LLM API integrations
created 2 years ago
updated 1 year ago

LocAgent by gersteinlab

2.1%
486
Agentic framework for code localization (research paper)
created 4 months ago
updated 3 months ago

bbFuzzing.txt by reewardius

0.3%
394
Fuzzing wordlist, mostly AI-generated, for web app security testing
created 2 years ago
updated 1 month ago

FuzzyAI by cyberark

1.5%
664
LLM fuzzer for automated jailbreak detection
created 8 months ago
updated 2 weeks ago

promptmap by utkusen

2.8%
877
Prompt injection scanner for LLM apps
created 2 years ago
updated 1 week ago
Starred by Elie Bursztein Elie Bursztein(Cybersecurity Lead at Google DeepMind), Chip Huyen Chip Huyen(Author of AI Engineering, Designing Machine Learning Systems), and
1 more.

oss-fuzz-gen by google

0.3%
1k
LLM-powered fuzz target generator for C/C++/Java/Python projects, benchmarked via OSS-Fuzz
created 1 year ago
updated 5 days ago

pytm by OWASP

0.3%
1k
Python framework for threat modeling, shifting left for developers
created 7 years ago
updated 2 months ago
Starred by Dan Guido Dan Guido(Cofounder of Trail of Bits).

vulnhuntr by protectai

13.5%
2k
LLM-powered tool for zero-day vulnerability discovery via static code analysis
created 9 months ago
updated 5 months ago
Feedback? Help us improve.