The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)

A fork of AFL for fuzzing Windows binaries

Exercises to learn how to fuzz with American Fuzzy Lop

A fast, parallel test case minimization tool.

afl-unicorn lets you fuzz any piece of binary that can be emulated by Unicorn Engine.

Winnie makes fuzzing Windows applications easy

Kernel Fuzzer for Xen Project (KF/x) - Hypervisor-based fuzzing using Xen VM forking, VMI & AFL

Large Language Model guided Protocol Fuzzing (NDSS'24)

UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities

QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.

FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulation. It's fast and comparably easy to set up.

GraphFuzz is an experimental framework for building structure-aware, library API fuzzers.

Domain-Specific Fuzzing with Waypoints

Janus: a state-of-the-art file system fuzzer on Linux

Reverse Engineering tools

This repository contains the tools we used in our research on the Google Titan M chip

Sound and Cost-effective Fuzzing of Stripped Binaries by Incremental and Stochastic Rewriting

Automatically exported from code.google.com/p/ioctlfuzzer

StateAFL: A Greybox Fuzzer for Stateful Network Servers