Boofuzz is a fork of and the successor to the Sulley fuzzing framework. Besides numerous bug fixes, boofuzz aims for extensibility, with the eventual goal of being able to fuzz literally anything. Sulley has been the preeminent open source fuzzer for some time, but has fallen out of maintenance.
Like Sulley, boofuzz incorporates all the critical elements of a fuzzer:
Unlike Sulley, boofuzz also features:
Boofuzz requires Python. Recommended installation requires pip
.
Ubuntu: sudo apt-get install python-pip
Windows: See this help site but make sure to get Python 2.x instead of 3.x (pip is included).
pip install boofuzz
pip
from within the boofuzz directory:sudo <span">pip install .
pip install .
Tips:
Use the -e
option for developer mode, which allows changes to be seen automatically without reinstalling:
`sudo pip install -e .`
To install developer tools (unit test dependencies, test runners, etc.) as well:
`sudo pip install -e .[dev]`
If you’re behind a proxy:
`set HTTPS_PROXY=http://your.proxy.com:port`
On Linux, also use sudo
’s -E
option:
sudo -E pip install -e .