doubleback
doubleback | radamsa | |
---|---|---|
1 | 5 | |
0 | - | |
- | - | |
0.0 | - | |
over 2 years ago | - | |
C | ||
GNU General Public License v3.0 or later | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
doubleback
-
What Is Fuzz Testing?
The link below is a relatively simple example of differential fuzzing between implementations in different programming languages using AFL. It works by reading and writing to a second process it spawns and aborting on differences. Before writing this, I could not find any working examples of this technique, although I'm sure they are out there, somewhere.
https://github.com/ironmeld/doubleback/blob/main/src/c/tests...
radamsa
-
How to fuzz java code with jazzar?
Ex Radmasa
- Radamsa – test case generator for robustness testing
-
Anyone knows open source mutator support regex?
I used to use radamsa to make my own fuzzer, but it does not support regex to generate datas.
-
What Is Fuzz Testing?
At simplest and most straight forward level fuzz testing is pretty simple to get started with. Collect some input(API calls, files, etc.), pass it to fuzzer(for example radamsa[0]), throw it at program and observe...
Ofc, depending on system collecting input and sending it to system might be bit more complicated. Hardest part is often the observing and finding that an error happens.
Not that this gets you full coverage, for more complex things like protocols something custom that takes lot more effort is probably needed.
[0] https://gitlab.com/akihe/radamsa
- Radamsa: A general-purpose black-box fuzzer
What are some alternatives?
cryptofuzz - Fuzzing cryptographic libraries. Magic bug printer go brrrr.
onefuzz - A self-hosted Fuzzing-As-A-Service platform
beacon-fuzz - Differential Fuzzer for Ethereum 2.0
winafl - A fork of AFL for fuzzing Windows binaries
jazzer - Coverage-guided, in-process fuzzing for the JVM
nautilus - A grammar based feedback Fuzzer
peach - Peach is a fuzzing framework which uses a DSL for building fuzzers and an observer based architecture to execute and monitor them.
sulley - A pure-python fully automated and unattended fuzzing framework.
American Fuzzy Lop - american fuzzy lop - a security-oriented fuzzer