American fuzzy lop is a security-oriented fuzzer
American fuzzy lop is a security-oriented fuzzer that employs a novel type of compile-time instrumentation and genetic algorithms to automatically discover clean, interesting test cases that trigger new internal states in the targeted binary. This substantially improves the functional coverage for the fuzzed code. The compact synthesized corpora produced by the tool are also useful for seeding other, more labor- or resource-intensive testing regimes down the road.
Compared to other instrumented fuzzers, afl-fuzz is designed to be practical: it has modest performance overhead, uses a variety of highly effective fuzzing strategies and effort minimization tricks, requires essentially no configuration, and seamlessly handles complex, real-world use cases - say, common image parsing or file compression libraries.
- Developed at devel:tools
- Sources inherited from project openSUSE:Factory
-
1
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:42:Factory-Candidates-Check/afl && cd $_ - Create Badge
Source Files
| Filename | Size | Changed |
|---|---|---|
| afl-1.58b-fix-paths.patch | 0000000578 578 Bytes | |
| afl-2.41b.tgz | 0000832153 813 KB | |
| afl-rpmlintrc | 0000000725 725 Bytes | |
| afl.changes | 0000019926 19.5 KB | |
| afl.spec | 0000002694 2.63 KB |
Revision 33 (latest revision is 82)
Yuchen Lin (maxlin_factory)
accepted
request 487488
from
Marcus Meissner (msmeissn)
(revision 33)
- update to 2.41b:
- Addressed a major user complaint related to timeout detection. Timing out
inputs are now binned as "hangs" only if they exceed a far more generous
time limit than the one used to reject slow paths.
- update to 2.40b:
- Fixed a minor oversight in the insertion strategy for dictionary words.
Spotted by Andrzej Jackowski.
- Made a small improvement to the havoc block insertion strategy.
- Adjusted color rules for "is it done yet?" indicators.
Comments 0