Security-Protocols

Fusil project is a fuzzing program. Today, it’s specific to Linux command line program, but the code is designed to be used with any project type (remote process, fake HTTP server, fuzz network socket, etc.). New Fusil implementation is now based on multi-agent system instead monolithic architecture. See Fusil architecture for the details. Read also documentation. Fusil allows to easily write so-called “Fuzzing projects” from a set of functions and the power of Python: create a process, compile C program, watch a process, watch syslog, etc.


fusil --project project/xterm.py

$ cd fusil
$ fusil -p project/xterm.py
[session #1] Start session
[process xterm] Timeout! (1.0 second)
(...)
[session #8] Start session
*** glibc detected *** /usr/bin/xterm: double free or corruption (!prev): 0x080ad2b8 ***
======= Backtrace: =========
/lib/tls/i686/cmov/libc.so.6[0xb7b957cd]
(...)
[watch process] Process killed by signal SIGIOT
[session #8] Session score: 100.0%
[application] Success with session #8!


Fusil Project Page
http://fusil.hachoir.org/trac