[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#766760: ITP: american-fuzzy-lop -- instrumentation-driven fuzzer for binary formats

Package: wnpp
Severity: wishlist
Owner: Jakub Wilk <jwilk@debian.org>

* Package name    : american-fuzzy-lop
  Version         : 0.40b
  Upstream Author : Name <somebody@example.org>
* URL             : http://code.google.com/p/american-fuzzy-lop/
* License         : Apache License 2.0
  Programming Lang: C
  Description     : instrumentation-driven fuzzer for binary formats

American fuzzy lop uses a novel type of compile-time instrumentation and genetic algorithms to automatically discover clean, interesting test cases and substantially improve the functional coverage for the tested code.

Compared to other instrumented fuzzers, the tool is designed to be practical: it has a modest performance overhead, uses a variety of highly effective fuzzing strategies, and seamlessly handles complex, real-world use cases - say, common image parsing or file compression libraries.

Using libjpeg as an example, the tool easily toggles twice as many branches as non-instrumented fuzzing, and identifies around 40% more distinctive test cases compared to statement coverage algorithms.

[This description was shamelessly stolen from the upstream homepage. Patches to make it read less than an advertisement are welcome!]

Jakub Wilk

Reply to: