36 Repos
Tools and frameworks designed for automated bug discovery and kernel testing.
Explore 36 awesome GitHub repositories matching part of an awesome list · Fuzzing Frameworks. Refine with filters or upvote what's useful.
Syzkaller is an unsupervised, coverage-guided kernel fuzzer that automatically generates and mutates system call sequences to find bugs in operating system kernels. It operates without human intervention, using a closed feedback loop of input generation, execution, crash detection, and corpus refinement to continuously explore kernel code paths. The fuzzer distinguishes itself by supporting multiple operating system kernels, including Linux, FreeBSD, and Windows, through per-platform syscall harnesses that abstract system call interfaces behind a common driver. It uses declarative description
Distributed, coverage-guided fuzzer for Linux kernel syscalls.
go-fuzz is a coverage-guided randomized testing tool for identifying crashes and logic bugs in Go code. It consists of a fuzzer that evolves random inputs based on code execution paths, an instrumentation tool that produces binaries for tracking coverage, and a seed corpus manager. The tool utilizes compile-time binary instrumentation to monitor branch coverage and employs a feedback-driven mutation loop to prioritize inputs that reach new sections of the codebase. It includes capabilities for comparative differential testing to identify logic errors by executing different implementations of
Coverage-guided testing tool for Go packages.
This is a public archive of vulnerability findings, proof-of-concept code, and technical reports detailing security flaws discovered in third-party software. It functions as a coordinated vulnerability disclosure platform, enabling private reporting to vendors and structured publication of advisories after a fix is released or a 90-day deadline passes. The repository provides modular security analysis tooling—standalone scripts and binaries each targeting a specific bug class for automated detection—alongside a cross-platform fuzzing framework that runs tests across multiple operating systems
Runs fuzz tests across multiple operating systems and architectures to uncover software defects.
Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)
Easy-to-use fuzzer with coverage-guided feedback and analysis.
a general-purpose fuzzer
General-purpose fuzzer and test case generator.
Coverage-guided, in-process fuzzing for the JVM
Coverage-guided, in-process fuzzer for the Java Virtual Machine.
RetroWrite -- Retrofitting compiler passes through binary rewriting
Static instrumentation tool for binary fuzzing.
AFL/QEMU fuzzing with full-system emulation.
Hardware-assisted fuzzer for kernel testing.
Directed Greybox Fuzzing with AFL
Directed greybox fuzzer for targeting specific program locations.
🌪️ Application fuzzer
Transparent input fuzzer that intercepts and mutates file operations.
ANTLR v4 grammar-based test generator
Grammar-based file format fuzzer using ANTLR v4.
Peach is a fuzzing framework which uses a DSL for building fuzzers and an observer based architecture to execute and monitor them.
Framework for creating custom smart and dumb fuzzers.
Janus: a state-of-the-art file system fuzzer on Linux
Framework for filesystem fuzzing.
Binary code-coverage fuzzer for macOS, based on libFuzzer and LLVM
Binary code-coverage fuzzer for macOS based on libFuzzer.
SOSP'25 Automatic checker synthesis for system-level static analysis
Static analysis tool using LLM-synthesized checkers.
VirtFuzz is a Linux Kernel Fuzzer that uses VirtIO to provide inputs into the kernels subsystem. It is built with LibAFL.
Fuzzing framework for wireless stacks via VirtIO.
Bug hunting through fuzzer/*-sanitizer/etc...
Tools for kernel quality assurance and security.
Sloth 🦥 is a coverage guided fuzzing framework for fuzzing Android Native libraries that makes use of libFuzzer and QEMU user-mode emulation
Coverage-guided framework for fuzzing Android native libraries.
Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints
Virtual machine checkpointing for accelerated driver fuzzing.