[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bugtraq
Subject:    (tool announcement) bunny the fuzzer
From:       Michal Zalewski <lcamtuf () dione ! cc>
Date:       2007-10-31 20:51:39
Message-ID: Pine.LNX.4.58.0710312124460.24234 () dione ! cc
[Download RAW message or body]

Hi all,

Just a quick note - I would like to announce the availability of our
general-purpose closed loop protocol-blind fuzzer for open source C code:

  http://code.google.com/p/bunny-the-fuzzer/

Bunny uses automatically generated C-level instrumentation to focus on
runtime inputs observed to trigger new control flow paths or interesting
parameter variations - and to bail out early on dead-end fuzzing routes.

This notably improves flow path coverage and overall quality of the
fuzzing process.

The tool is designed to maintain a near-native execution speed, and
requires virtually no setup, even when dealing with complex and large
codebases. This is probably a major improvement over previous closed loop
solutions.

The software should be reasonably stable, though some bugs might still
need to be ironed out. Current documentation is available here:

  http://code.google.com/p/bunny-the-fuzzer/wiki/BunnyDoc

Cheers,
/mz
[prev in list] [next in list] [prev in thread] [next in thread]