Alternatives and similar repositories for kvm-fuzz

Users that are interested in kvm-fuzz are comparing it to the libraries listed below

• Cisco-Talos / snap_wtf_macos

  View on GitHub
  WTF Snapshot fuzzing of macOS targets
  ☆99May 31, 2024Updated last year
• eurecom-s3 / symqemu

  View on GitHub
  SymQEMU: Compilation-based symbolic execution for binaries
  ☆370May 5, 2025Updated 9 months ago
• quarkslab / rewind

  View on GitHub
  Snapshot-based coverage-guided windows kernel fuzzer
  ☆322Dec 16, 2021Updated 4 years ago
• Agnoctopus / Tartiflette

  View on GitHub
  Snapshot fuzzing with KVM and LibAFL
  ☆96Aug 21, 2022Updated 3 years ago
• seemoo-lab / VirtFuzz

  View on GitHub
  VirtFuzz is a Linux Kernel Fuzzer that uses VirtIO to provide inputs into the kernels subsystem. It is built with LibAFL.
  ☆133Jun 7, 2024Updated last year
• sslab-gatech / winnie

  View on GitHub
  Winnie makes fuzzing Windows applications easy
  ☆571Nov 28, 2022Updated 3 years ago
• IntelLabs / kAFL

  View on GitHub
  A fuzzer for full VM kernel/driver targets
  ☆773Jan 6, 2026Updated last month
• nyx-fuzz / libxdc

  View on GitHub
  The fastest Intel-PT decoder for fuzzing
  ☆377Feb 2, 2024Updated 2 years ago
• intel / kernel-fuzzer-for-xen-project

  View on GitHub
  Kernel Fuzzer for Xen Project (KF/x) - Hypervisor-based fuzzing using Xen VM forking, VMI & AFL
  ☆473Jul 8, 2024Updated last year
• ZhangZhuoSJTU / StochFuzz

  View on GitHub
  Sound and Cost-effective Fuzzing of Stripped Binaries by Incremental and Stochastic Rewriting
  ☆190Oct 21, 2023Updated 2 years ago
• FSecureLABS / ViridianFuzzer

  View on GitHub
  Kernel driver to fuzz Hyper-V hypercalls
  ☆136Feb 15, 2019Updated 6 years ago
• lcatro / qemu-fuzzer

  View on GitHub
  Qemu Fuzzer.针对Qemu模拟设备的模糊测试工具,主要思路是Host生成种子Data,然后传递给Guest中转程序,由中转程序访问MMIO,以达到和模拟设备的交互,不同于qtest自带的fuzzer.
  ☆46Dec 12, 2021Updated 4 years ago
• 0vercl0k / wtf

  View on GitHub
  wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kerne…
  ☆1,713Jan 2, 2026Updated last month
• googleprojectzero / TinyInst

  View on GitHub
  A lightweight dynamic instrumentation library
  ☆1,307Apr 1, 2025Updated 10 months ago
• freingruber / JavaScript-Raider

  View on GitHub
  JavaScript Fuzzing framework for v8
  ☆142Jan 24, 2022Updated 4 years ago
• googleprojectzero / SockFuzzer

  View on GitHub
  ☆446Oct 3, 2024Updated last year
• gamozolabs / basic_mutator

  View on GitHub
  About as basic of a mutator as you can get, but it does the trick in most situations
  ☆64Aug 12, 2020Updated 5 years ago
• 0dayResearchLab / msFuzz

  View on GitHub
  msFuzz is a coverage-guided fuzzer for Windows kernel drivers that utilizes Intel PT and leverages constraint and dependency analysis to …
  ☆217Dec 24, 2025Updated last month
• MelbourneFuzzingHub / aflteam

  View on GitHub
  AFLTeam Collaborative Parallel Fuzzing
  ☆75Sep 5, 2022Updated 3 years ago
• strongcourage / uafuzz

  View on GitHub
  UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities
  ☆350Sep 25, 2023Updated 2 years ago
• andreafioraldi / qasan

  View on GitHub
  QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.
  ☆350Jul 30, 2024Updated last year
• googleprojectzero / Jackalope

  View on GitHub
  Binary, coverage-guided fuzzer for Windows, macOS, Linux and Android
  ☆1,287Jan 13, 2026Updated last month
• trailofbits / Honeybee

  View on GitHub
  An experimental high performance, fuzzing oriented Intel Processor Trace capture and analysis suite
  ☆131Feb 13, 2022Updated 4 years ago
• zerozenxlabs / ZDI-24-020

  View on GitHub
  ☆130Nov 12, 2024Updated last year
• 0xf4b1 / bsod-kernel-fuzzing

  View on GitHub
  BSOD: Binary-only Scalable fuzzing Of device Drivers
  ☆166Nov 11, 2021Updated 4 years ago
• sslab-gatech / DIE

  View on GitHub
  Fuzzing JavaScript Engines with Aspect-preserving Mutation
  ☆230Oct 18, 2023Updated 2 years ago
• vusec / collabfuzz

  View on GitHub
  CollabFuzz: A Framework for Collaborative Fuzzing
  ☆70Dec 2, 2021Updated 4 years ago
• ant4g0nist / ManuFuzzer

  View on GitHub
  Binary code-coverage fuzzer for macOS, based on libFuzzer and LLVM
  ☆177May 19, 2025Updated 8 months ago
• season-lab / fuzzolic

  View on GitHub
  fuzzing + concolic = fuzzolic :)
  ☆127Nov 6, 2025Updated 3 months ago
• AFLplusplus / LibAFL-legacy

  View on GitHub
  AFL++ as a library: gives you all the tools necessary to craft the best fuzzer for your targets with ease!
  ☆112Apr 30, 2021Updated 4 years ago
• RUB-SysSec / Nyx

  View on GitHub
  USENIX 2021 - Nyx: Greybox Hypervisor Fuzzing using Fast Snapshots and Affine Types
  ☆207Nov 14, 2021Updated 4 years ago
• ChengyuSong / Kirenenko

  View on GitHub
  Super Fast Concolic Execution Engine based on Source Code Taint Tracing
  ☆102Jul 14, 2022Updated 3 years ago
• bsauce / kernel-security-learning

  View on GitHub
  Anything about kernel security. CTF kernel pwn, kernel exploit, kernel fuzz and kernel defense paper, kernel debugging technique, kernel…
  ☆749Jan 27, 2026Updated 2 weeks ago
• fgsect / FitM

  View on GitHub
  FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulati…
  ☆291May 8, 2022Updated 3 years ago
• GJDuck / e9patch

  View on GitHub
  A powerful static binary rewriting tool
  ☆1,085Updated this week
• SunHao-0 / healer

  View on GitHub
  Kernel fuzzer inspired by Syzkaller.
  ☆284Feb 23, 2022Updated 3 years ago
• seal9055 / sfuzz

  View on GitHub
  High performance fuzzing using riscv to x86 binary translations and modern fuzzing techniques
  ☆154Jan 23, 2024Updated 2 years ago
• allpaca / chrome-sbx-db

  View on GitHub
  A Collection of Chrome Sandbox Escape POCs/Exploits for learning
  ☆854Jun 4, 2020Updated 5 years ago
• h0mbre / Lucid

  View on GitHub
  An educational Bochs-based snapshot fuzzer project
  ☆226Oct 27, 2025Updated 3 months ago