Go Fuzzing

Open-source Go projects categorized as Fuzzing

Top 8 Go Fuzzing Projects

  • syzkaller

    syzkaller is an unsupervised coverage-guided kernel fuzzer

  • Project mention: Automated Unit Test Improvement Using Large Language Models at Meta | news.ycombinator.com | 2024-02-17

    https://arxiv.org/abs/2402.09171 :

    > This paper describes Meta's TestGen-LLM tool, which uses LLMs to automatically improve existing human-written tests. TestGen-LLM verifies that its generated test classes successfully clear a set of filters that assure measurable improvement over the original test suite, thereby eliminating problems due to LLM hallucination. [...] We believe this is the first report on industrial scale deployment of LLM-generated code backed by such assurances of code improvement.

    Coverage-guided unit test improvement might [with LLMs] be efficient too.

    https://github.com/topics/coverage-guided-fuzzing :

    - e.g. Google/syzkaller is a coverage-guided syscall fuzzer: https://github.com/google/syzkaller

    - Gitlab CI supports coverage-guided fuzzing: https://docs.gitlab.com/ee/user/application_security/coverag...

    - oss-fuzz, osv

    Additional ways to improve tests:

    Hypothesis and pynguin generate tests from type annotations.

    There are various tools to generate type annotations for Python code;

    > pytype (Google) [1], PyAnnotate (Dropbox) [2], and MonkeyType (Instagram) [3] all do dynamic / runtime PEP-484 type annotation type inference [4] to generate type annotations. https://news.ycombinator.com/item?id=39139198

    icontract-hypothesis generates tests from icontract DbC Design by Contract type, value, and invariance constraints specified as precondition and postcondition @decorators:

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
  • go-fuzz

    Randomized testing for Go

  • rapid

    Rapid is a modern Go property-based testing library

  • Project mention: Property based testing in Go | dev.to | 2024-03-01

    You can check the package here, in official GitHub repo. I recently found this amazing testing framework and now I can't imagine developing tests without it. Let's try to refactor our previous example with this package:

  • firefly

    Black box fuzzer for web applications (by Brum3ns)

  • cfuzz

    Command line fuzzer and bruteforcer 🌪 wfuzz for command

  • shfz

    TypeScript Scenario-Based Web Application Fuzzing Framework

  • cnfuzz

    Breaking Cloud Native Web APIs in their natural habitat.

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
  • bruter

    Brutuer is an OSINT tooling, an experiment to build a reconnaissance simple app to have fun 🕵️‍♂️

  • Project mention: https://github.com/CyberRoute/bruter | /r/golang | 2023-11-04

    - https://github.com/CyberRoute/bruter

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Go Fuzzing discussion

Log in or Post with

Go Fuzzing related posts

  • https://github.com/CyberRoute/bruter

    1 project | /r/golang | 4 Nov 2023
  • Bruter v1.1.0-Beta

    2 projects | news.ycombinator.com | 2 Nov 2023
  • Fuzz Testing Is the Best Thing to Happen to Our Application Tests

    3 projects | news.ycombinator.com | 17 Aug 2023
  • Fuzzing in Go

    2 projects | /r/golang | 10 Jun 2023
  • Is there a Linux user-space program that causes execution through every kernel function path and context?

    1 project | /r/kernel | 5 Jun 2023
  • Those scary warnings of juice jacking in airports and hotels? They’re nonsense

    1 project | /r/technology | 1 May 2023
  • Hopper: Distributed Fuzzer

    2 projects | /r/golang | 1 Mar 2023
  • A note from our sponsor - InfluxDB
    www.influxdata.com | 12 Jun 2024
    Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →

Index

What are some of the best open-source Fuzzing projects in Go? This list will help you:

Project Stars
1 syzkaller 5,186
2 go-fuzz 4,722
3 rapid 552
4 firefly 380
5 cfuzz 79
6 shfz 66
7 cnfuzz 36
8 bruter 34

Sponsored
Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com