36 repositorios
Tools and frameworks designed for automated bug discovery and kernel testing.
Explore 36 awesome GitHub repositories matching part of an awesome list · Fuzzing Frameworks. Refine with filters or upvote what's useful.
Syzkaller is an unsupervised, coverage-guided kernel fuzzer that automatically generates and mutates system call sequences to find bugs in operating system kernels. It operates without human intervention, using a closed feedback loop of input generation, execution, crash detection, and corpus refinement to continuously explore kernel code paths. The fuzzer distinguishes itself by supporting multiple operating system kernels, including Linux, FreeBSD, and Windows, through per-platform syscall harnesses that abstract system call interfaces behind a common driver. It uses declarative description
Distributed, coverage-guided fuzzer for Linux kernel syscalls.
go-fuzz es una herramienta de pruebas aleatorias guiada por cobertura para identificar fallos y errores de lógica en código Go. Consiste en un fuzzer que evoluciona entradas aleatorias basadas en rutas de ejecución de código, una herramienta de instrumentación que produce binarios para rastrear la cobertura y un gestor de corpus semilla. La herramienta utiliza instrumentación binaria en tiempo de compilación para monitorear la cobertura de ramas y emplea un bucle de mutación impulsado por retroalimentación para priorizar las entradas que alcanzan nuevas secciones del código base. Incluye capacidades para pruebas diferenciales comparativas para identificar errores de lógica ejecutando diferentes implementaciones de la misma lógica con la misma entrada aleatoria. El sistema maneja la generación de entradas aleatorias para realizar pruebas de estrés en parsers de formatos complejos y proporciona utilidades para la minimización y deduplicación de corpus semilla. Puede exportar archivos instrumentados para su ejecución dentro de un motor de fuzzing en Linux.
Coverage-guided testing tool for Go packages.
This is a public archive of vulnerability findings, proof-of-concept code, and technical reports detailing security flaws discovered in third-party software. It functions as a coordinated vulnerability disclosure platform, enabling private reporting to vendors and structured publication of advisories after a fix is released or a 90-day deadline passes. The repository provides modular security analysis tooling—standalone scripts and binaries each targeting a specific bug class for automated detection—alongside a cross-platform fuzzing framework that runs tests across multiple operating systems
Runs fuzz tests across multiple operating systems and architectures to uncover software defects.
Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)
Easy-to-use fuzzer with coverage-guided feedback and analysis.
a general-purpose fuzzer
General-purpose fuzzer and test case generator.
Coverage-guided, in-process fuzzing for the JVM
Coverage-guided, in-process fuzzer for the Java Virtual Machine.
RetroWrite -- Retrofitting compiler passes through binary rewriting
Static instrumentation tool for binary fuzzing.
AFL/QEMU fuzzing with full-system emulation.
Hardware-assisted fuzzer for kernel testing.
Directed Greybox Fuzzing with AFL
Directed greybox fuzzer for targeting specific program locations.
🌪️ Application fuzzer
Transparent input fuzzer that intercepts and mutates file operations.
ANTLR v4 grammar-based test generator
Grammar-based file format fuzzer using ANTLR v4.
Peach is a fuzzing framework which uses a DSL for building fuzzers and an observer based architecture to execute and monitor them.
Framework for creating custom smart and dumb fuzzers.
Janus: a state-of-the-art file system fuzzer on Linux
Framework for filesystem fuzzing.
Binary code-coverage fuzzer for macOS, based on libFuzzer and LLVM
Binary code-coverage fuzzer for macOS based on libFuzzer.
SOSP'25 Automatic checker synthesis for system-level static analysis
Static analysis tool using LLM-synthesized checkers.
VirtFuzz is a Linux Kernel Fuzzer that uses VirtIO to provide inputs into the kernels subsystem. It is built with LibAFL.
Fuzzing framework for wireless stacks via VirtIO.
Bug hunting through fuzzer/*-sanitizer/etc...
Tools for kernel quality assurance and security.
Sloth 🦥 is a coverage guided fuzzing framework for fuzzing Android Native libraries that makes use of libFuzzer and QEMU user-mode emulation
Coverage-guided framework for fuzzing Android native libraries.
Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints
Virtual machine checkpointing for accelerated driver fuzzing.