Fuzzgrind

Fuzzgrind is a fully automatic fuzzing tool, generating test files with the purpose of discovering new execution paths likely to trigger bugs and potentially vulnerabilities.

It is based on the concept of symbolic execution. Thus, the tool starts from a file considered valid by the software under test, and analyses the execution path to extract any constraints tied to branch instructions followed by this software. By resolving constraints one by one, Fuzzgrind will alter the valid file to explore possible new branches of the software under test, in order to discover new vulnerabilities.


author
Gabriel Campana
url

http://www.security-labs.org/fuzzgrind/

appeared
2009-06-04
last update
2009-06-22
c
4701
python
2068
sh
49
license
free


CategoryFuzzer