Shazzer - Shared online fuzzing

- Home
- Vectors
- Network
- Tools
- Blog
  - Blog home
  - RSS
- Help
- Home
- Vectors
- Network
- Tools
- Blog
  - Blog home
  - RSS
- Help

Mutating...

Shazzer

Shared online fuzzer

Fuzzing browsers since 2012

Made by Gareth Heyes

New Users

Popular Users

Updated

Valid space characters in a regex
Characters encoded by escape()
Characters allowed after throw statement
Characters encoded by encodeURI()
encodeURI() not encoded with %
Characters allowed before after onerror events
Characters allowed while closing script tag
Characters after https URI scheme which prevent URL parsing of href
chars before img tags
test
Characters allowed begin from a forward slash character in javascript protocol
characters between function name and parentheses
Characters allowed in between // in absolute URL
Characters matching RegEx /\w/ui
Unicode "Latin" characters using \p{scx=Latin} RegEx
Properties are accessible in a sandboxed iframe
Properties that leak the parent URL even when sandboxed
Characters allowed as start of HTML tag name
Characters allowed in middle of HTML tag name
Characters allowed javascript and colon

New Vectors

Characters allowed in middle of HTML tag name
Characters allowed as start of HTML tag name
Valid space characters in a regex
Unicode "Latin" characters using \p{scx=Latin} RegEx
Characters matching RegEx /\w/ui
Characters allowed in between // in absolute URL
characters between function name and parentheses
Characters allowed begin from a forward slash character in javascript protocol
Characters allowed while closing script tag
Characters after https URI scheme which prevent URL parsing of href

Most Popular

URL domain dot alternatives(6.5k)
Characters allowed javascript and colon(6.3k)
JavaScript Scheme starting with https://(6.2k)
Characters allowed between hostname and / but don't change the hostname(5.4k)
Characters between < and element name(5.3k)
Characters that can precede the javascript protocol(5.1k)
DOM element relationships(5.1k)
HTML entities that create ASCII characters inside a JavaScript URL(4.7k)
characters allowed between exclamation mark and greater then (4.6k)
Characters allowed javascript and colon copy2(4.5k)

Most Liked

URL domain dot alternatives(5)
Characters allowed between hostname and / but don't change the hostname(4)
JavaScript Scheme starting with https://(4)
Characters allowed between multiple HTML attributes(4)
HTML entities that create ASCII characters inside a JavaScript URL(4)
Entities that cause an external URL before @(4)
Characters that can precede the javascript protocol(3)
Characters allowed inside javascript protocol and still returns the hostname(3)
Characters that cause an external URL before @(3)
Characters allowed javascript and colon(3)

disconnected

Distributed Fuzzing

Enabled:

Status:disconnected

Your browser automatically contributes to distributed fuzzing when idle.