| title | created | modified |
|---|---|---|
0day exploits, AFL(american fuzzy lop), AFL++ |
2022-12-07T12:43:26.515Z |
2023-01-13T03:03:25.457Z |
oss-fuzz supports fuzzing C/C++, Rust, Go, Python and Java/JVM code
blog about greyone Discover Vulnerabilities with Flow Sensitive Fuzzing
AFL(American Fuzzy Lop)是由安全研究员Michał Zalewski(@lcamtuf)开发的一款基于覆盖引导(Coverage-guided)的模糊测试工具,它通过记录输入样本的代码覆盖率,从而调整输入样本以提高覆盖率,增加发现漏洞的概率
intro-to-american-fuzzy-lop-fuzzing-in-5-steps
fuzzing-with-american-fuzzy-lop-afl
AFL++ can fuzz c source code, binary targets, network services, gui programs
Montage: A Neural Network Language Model-Guided JavaScript Engine Fuzzer
Skyfire (learn a probabilistic CFG grammar) Learn&Fuzz (learn a RNN model of valid inputs) GAN (learn a GAN to generate legitimate seeds) Neuzz (learn a NN to model input -> coverage)
Driller QSYM DigFuzz SAVIOR Intriguer Matryoshka HFL
FANS
Mopt LSTM RL ILF
VUzzer GreyOne