[New Tool] American Fuzzy Lop v0.26b Released
American Fuzzy Lop uses a novel type of compile-time instrumentation to automatically discover clean, interesting test cases and substantially improve the functional coverage for the tested code.
Compared to other instrumented fuzzers, the tool is designed to be practical: it has a modest performance overhead, uses a variety of highly effective fuzzing strategies, and seamlessly handles complex, real-world use cases – say, common image parsing libraries.
Using libjpeg as an example, the tool easily toggles twice as many branches as non-instrumented fuzzing, and identifies around 40% more distinctive test cases compared to coverage-only algorithms.
The tool runs on Linux x86 systems. The instrumentation is confirmed to work for C, Objective C, and C++ code.
More Information:
Related Posts
Botwall4J Beta – A Servlet Filter →
PVS-Studio v6.15 – Static Code Analyzer →
GramTest – Fuzzing with grammars →
