The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)

A fork of AFL for fuzzing Windows binaries

Exercises to learn how to fuzz with American Fuzzy Lop

A fast, parallel test case minimization tool.

afl-unicorn lets you fuzz any piece of binary that can be emulated by Unicorn Engine.

Winnie is an end-to-end system that makes fuzzing Windows applications easy

Kernel Fuzzer for Xen Project (KF/x) - Hypervisor-based fuzzing using Xen VM forking, VMI & AFL

QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.

UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities

Large Language Model guided Protocol Fuzzing (NDSS'24)

FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulation. It's fast and comparably easy to set up.

GraphFuzz is an experimental framework for building structure-aware, library API fuzzers.

Domain-Specific Fuzzing with Waypoints

Janus: a state-of-the-art file system fuzzer on Linux

Sound and Cost-effective Fuzzing of Stripped Binaries by Incremental and Stochastic Rewriting

This repository contains the tools we used in our research on the Google Titan M chip

Reverse Engineering tools

StateAFL: A Greybox Fuzzer for Stateful Network Servers

BSOD: Binary-only Scalable fuzzing Of device Drivers