Snapshots / memory dumps
zfuzz
Emulation-based snapshot fuzzer that can load arbitrary memory dumps and attack them directly.
View on GitHub
trailofbits/zfuzz
Best for
Firmware or embedded targets where standing up a normal harness is too expensive.
Surface
Snapshots / memory dumps
Catalog group
Fuzz programs and break assumptions
Repository
trailofbits/zfuzz
From the README
This project was built by Gilbert Hoermann during the Trail of Bits 2022 Winter Internship. The project is provided as is. Contact [email protected] if you'd like to use this project. Emulation based snapshot fuzzer. Can load arbitrary memory dumps and start fuzzing. Provides a mutational and a generationl grammar based mutator. The repo currently contains 2 test-cases that the fuzzer is harnessed for.Read the full README on GitHub ↗
Related tools · Fuzz programs and break assumptions
- DeepState Common interface for C and C++ tests across multiple fuzzing and symbolic-execution backends.
- gosentry Security-focused Go toolchain fork that adds LibAFL fuzzing, structured inputs, grammar mode, and fuzz-time bug detectors.
- KRF Kernel fault-injection tool for Linux and FreeBSD designed to force error paths and expose weak handling.
- ProtoFuzz Grammar-aware fuzzer for Protocol Buffers that derives inputs from format definitions rather than hand-written generators.
- test-fuzz Rust macros and Cargo tooling that automate corpus creation and harness setup for fuzzing.
- Necessist Mutation-style tool that removes statements and calls to uncover tests that look healthy but are actually weak.