fuzzing
Fuzz testing
A hub for learning and exploring fuzzing techniques to test software for vulnerabilities
Tutorials, examples, discussions, research proposals, and other resources related to fuzzing
4k stars
113 watching
434 forks
Language: C++
last commit: 3 months ago Related projects:
| Repository | Description | Stars |
|---|---|---|
| google/oss-fuzz | An automated testing framework that uses random data to find errors in software | 10,671 |
 mykter/afl-training | A comprehensive workshop and training project on fuzzing with AFL (American Fuzzy Lop) for discovering vulnerabilities in popular software projects. | 1,233 |
| google/fuzzer-test-suite | A set of tests designed to challenge and identify bugs in fuzzing engines used by software developers. | 1,437 |
| google/fuzzbench | Automated testing of software components to identify vulnerabilities and weaknesses | 1,110 |
 aflplusplus/libafl | A framework for building custom fuzzers using Rust, allowing developers to extend and customize their fuzzing capabilities. | 2,059 |
 wcventure/fuzzingpaper | A curated collection of recent papers on fuzz testing techniques and tools. | 2,498 |
 antonio-morales/fuzzing101 | A step-by-step guide to learning fuzzing techniques for finding vulnerabilities in software projects | 3,269 |
| google/honggfuzz | A high-performance fuzzer for detecting security vulnerabilities in software | 3,093 |
 googleprojectzero/fuzzilli | Automates the process of finding bugs in JavaScript engines by generating random code and testing it for errors | 1,896 |
 forallsecure/graphfuzz | A framework for building fuzzing tools to test C++ libraries' APIs by constructing and executing dataflow graphs of function calls and object dependencies. | 9 |
 quarkslab/android-fuzzing | A toolkit for greybox fuzzing of Android applications using AFL++ Frida mode | 109 |
 jtpereyda/boofuzz | A tool for generating and testing network protocol inputs to identify vulnerabilities | 2,057 |
 bhass1/pyfuzz_can | A tool for generating and testing random CAN network inputs to simulate real-world conditions. | 13 |
| googleprojectzero/domato | A tool used to generate malformed HTML code to test web application security | 1,697 |
 status-im/nim-drchaos | A fuzzing framework for testing C/C++/Obj-C targets by generating random inputs to induce crashes or verify invariants. | 68 |