mishegos
honggfuzz
Our great sponsors
| mishegos | honggfuzz | |
|---|---|---|
| 6 | 5 | |
| 219 | 2,974 | |
| 0.9% | 0.8% | |
| 8.2 | 7.1 | |
| 11 days ago | about 1 month ago | |
| C++ | C | |
| Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
mishegos
-
Differ: Tool for testing and validating transformed programs
Differential fuzzing is woefully underutilized -- our experience is that it consistently[1] finds[2] bugs that "traditional" fuzzing techniques struggle to discover, and that the primary obstacles to its adoption are harness and orchestration complexity. DIFFER goes a long way towards overcoming those obstacles!
(FD: My company.)
[1]: https://github.com/trailofbits/mishegos
[2]: https://x509-limbo.com/
- Zydis v4 is out now, now featuring code generation and rewriting
-
Just released v0.2.0 of bddisasm - a no_std x86/x86_64 instruction decoder which aims to provide as much information as possible about an instruction
You may also want to check mishegos for another way of comparing different decoders.
-
Is Ghirda's Disassembly ASM output accurate enough?
Take a look at something like mishegos to see how sometimes the same instruction will be decoded differently by different disassemblers: https://github.com/trailofbits/mishegos
- Destroying x86_64 instruction decoders with differential fuzzing
-
Capstone Disassembler Framework
It sounds like what you want is Mishegos [1], described here [2].
[1] https://github.com/trailofbits/mishegos
honggfuzz
- FuzzTest: a C++ testing framework for writing and executing fuzz tests, property-based tests executed using coverage-guided fuzzing under the hood
-
How to fuzz java code with jazzar?
Ex ( AFL, WinAFL, HonggFuzz, LibFuzzer, Jazzer )
-
Question about getting coverage stats in real time using dynamorio
I once used Hongfuzz as a code-coverage tool, see: https://github.com/google/honggfuzz/tree/master/socketfuzzer
-
60x speed-up of Linux “perf”
Here's the libbfd-based code in case anyone would like to port it, it's basically addr2line.
https://github.com/google/honggfuzz/blob/master/linux/bfd.c
- Resurse C/C++?
What are some alternatives?
disas-bench - X86 disassembler benchmark
AFLplusplus - The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
sandsifter - The x86 processor fuzzer
American Fuzzy Lop - american fuzzy lop - a security-oriented fuzzer
capstone - Capstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings. [Moved to: https://github.com/capstone-engine/capstone]
build-your-own-x - 🤓 Build your own (insert technology here) [Moved to: https://github.com/codecrafters-io/build-your-own-x]
Catch - A modern, C++-native, test framework for unit-tests, TDD and BDD - using C++14, C++17 and later (C++11 support is in v2.x branch, and C++03 on the Catch1.x branch)
build-your-own-x - Master programming by recreating your favorite technologies from scratch.
winafl - A fork of AFL for fuzzing Windows binaries
gui_starter_template - A template CMake project to get you started with C++ and tooling
sanitizers - AddressSanitizer, ThreadSanitizer, MemorySanitizer
doctest - The fastest feature-rich C++11/14/17/20/23 single-header testing framework