A snapshotting, coverage-guided fuzzer for software (UEFI, Kernel, firmware, BIOS) built on SIMICS
☆329Mar 13, 2026Updated last week
Alternatives and similar repositories for tsffs
Users that are interested in tsffs are comparing it to the libraries listed below
Sorting:
- Lightweight fuzzing of a memory snapshot using KVM☆465Apr 11, 2024Updated last year
- An educational Bochs-based snapshot fuzzer project☆229Oct 27, 2025Updated 4 months ago
- ☆330Jun 20, 2024Updated last year
- Practical fuzzing tutorials and training☆32Jul 15, 2024Updated last year
- AFL++(2.63c/2.65c) + aflsmart(5ad7ea3)☆11Oct 20, 2020Updated 5 years ago
- ☆90Mar 26, 2025Updated 11 months ago
- ☆187Nov 29, 2023Updated 2 years ago
- ☆16Mar 9, 2026Updated last week
- Rust Bindings and tools for the Intel® Simics® Simulator☆17Mar 12, 2026Updated last week
- Snapshot-based coverage-guided windows kernel fuzzer☆325Dec 16, 2021Updated 4 years ago
- The Use of Likely Invariants as Feedback for Fuzzers☆94Jan 19, 2022Updated 4 years ago
- Same-Architecture Firmware Rehosting and Fuzzing☆130Dec 19, 2024Updated last year
- Core emulator components for Icicle☆283Feb 25, 2026Updated 3 weeks ago
- ☆82Feb 17, 2026Updated last month
- Framework for in-VM test execution and monitoring, inspired by Sandsifter☆15Mar 12, 2026Updated last week
- Coverage-Guided Greybox Distributed Fuzzer☆133Jan 26, 2026Updated last month
- A fuzzer for full VM kernel/driver targets☆778Feb 11, 2026Updated last month
- High performance fuzzing using riscv to x86 binary translations and modern fuzzing techniques☆155Jan 23, 2024Updated 2 years ago
- Pre-Silicon Hardware Fuzzing Toolkit☆61Aug 18, 2025Updated 7 months ago
- ASPFuzz: Fuzzing the AMD SP's ROM bootloader with LibAFL using QEMU full-system emulation☆30Apr 12, 2023Updated 2 years ago
- VirtFuzz is a Linux Kernel Fuzzer that uses VirtIO to provide inputs into the kernels subsystem. It is built with LibAFL.☆134Jun 7, 2024Updated last year
- wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kerne…☆1,737Jan 2, 2026Updated 2 months ago
- Framework for Automating Fuzzable Target Discovery with Static Analysis.☆549Feb 1, 2024Updated 2 years ago
- An example fuzzer about how to fuzz a JS engine combinign Nautilus with Token-level fuzzing☆47Mar 5, 2024Updated 2 years ago
- Deprecated! Use qemu-rs instead :)☆72Dec 19, 2023Updated 2 years ago
- a friendly implementation of nyx ontop of firecracker instead of QEMU. Easier to use & cleaner code☆30Jan 20, 2026Updated last month
- Intel x86 bare metal hypervisor for researching snapshot fuzzing ideas.☆171Dec 2, 2020Updated 5 years ago
- The fastest Intel-PT decoder for fuzzing☆378Feb 2, 2024Updated 2 years ago
- PASTIS: Collaborative Fuzzing Framework☆166Oct 12, 2025Updated 5 months ago
- A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.☆141Aug 17, 2021Updated 4 years ago
- AArch64 fuzzer based on the Apple Silicon hypervisor☆196Nov 23, 2023Updated 2 years ago
- GraphFuzz is an experimental framework for building structure-aware, library API fuzzers.☆274Jan 16, 2024Updated 2 years ago
- TTexplore is a library that performs path exploration on binary code using symbolic execution☆82Nov 14, 2022Updated 3 years ago
- Kernel Fuzzer for Xen Project (KF/x) - Hypervisor-based fuzzing using Xen VM forking, VMI & AFL☆475Jul 8, 2024Updated last year
- Collect crash (or UndefinedBehaviorSanitizer error) reports, triage, and estimate severity.☆353Dec 3, 2025Updated 3 months ago
- StdFuzzer is the reference implementation of a generic bit-level fuzzer with LibAFL☆48Dec 20, 2024Updated last year
- ☆39Sep 27, 2022Updated 3 years ago
- A LLVM Sanitizer for Symbolic Tracing☆235Updated this week
- First level taint implementation with qemu for linux user mode☆28Aug 11, 2020Updated 5 years ago