Skip to content

kalder/clusterfuzz

 
 

Repository files navigation

ClusterFuzz

ClusterFuzz is a scalable fuzzing infrastructure that finds security and stability issues in software.

Google uses ClusterFuzz to fuzz all Google products and as the fuzzing backend for OSS-Fuzz.

ClusterFuzz provides many features which help seamlessly integrate fuzzing into a software project's development process:

Overview

Documentation

You can find detailed documentation here.

Trophies

As of May 2022, ClusterFuzz has found ~29,000 bugs in Google (e.g. Chrome) and 36,000+ bugs in over 550 open source projects integrated with OSS-Fuzz.

Getting Help

You can file an issue to ask questions, request features, or ask for help.

Staying Up to Date

We will use clusterfuzz-announce(#)googlegroups.com to make announcements about ClusterFuzz.

ClusterFuzzLite

For a more lightweight version of ClusterFuzz that runs on CI/CD systems, check out ClusterFuzzLite.

OpenSSF Scorecard

Packages

No packages published

Languages

  • Python 87.5%
  • HTML 8.7%
  • Shell 1.4%
  • Dockerfile 0.4%
  • ANTLR 0.4%
  • PowerShell 0.3%
  • Other 1.3%