Skip to main content

AFL++ Fuzzer

Skill Verified Active
Part of:Testing Handbook Skills

AFL++ is a fork of AFL with better fuzzing performance and advanced features. Use for multi-core fuzzing of C/C++ projects.

Purpose

To guide users on leveraging AFL++ for efficient and advanced fuzzing of C/C++ codebases, offering advantages in performance and multi-core capabilities.

Features

  • Detailed AFL++ installation methods (native, Docker)
  • Guidance on writing effective fuzzing harnesses
  • Multiple compilation modes and sanitizer integration
  • Multi-core fuzzing campaign setup and monitoring
  • Analysis of fuzzing results and coverage

Use Cases

  • Setting up AFL++ for the first time on a C/C++ project
  • Improving fuzzing performance with multi-core execution
  • Troubleshooting common AFL++ issues and low performance
  • Understanding AFL++ output and analyzing found crashes

Non-Goals

  • Providing the AFL++ tool itself; users must install it
  • Writing target code for the user's project
  • Guaranteed bug discovery; success depends on harness quality and target code

Practices

  • Fuzzing methodology
  • Security testing
  • Code coverage analysis

Prerequisites

  • C/C++ compiler (GCC or Clang)
  • Python 3
  • Rust (for some installation methods)
  • Docker (optional, for easier setup)

Installation

First, add the marketplace

/plugin marketplace add trailofbits/skills
/plugin install testing-handbook-skills@trailofbits

Quality Score

Verified
95 /100
Analyzed about 22 hours ago

Trust Signals

Last commit3 days ago
GitHub owner trailofbits (opens in new tab)
Stars5.2k
LicenseCC-BY-SA-4.0
Status
View Source

Similar Extensions

Senior Backend Engineer

100

Designs and implements backend systems including REST APIs, microservices, database architectures, authentication flows, and security hardening. Use when the user asks to "design REST APIs", "optimize database queries", "implement authentication", "build microservices", "review backend code", "set up GraphQL", "handle database migrations", or "load test APIs". Covers Node.js/Express/Fastify development, PostgreSQL optimization, API security, and backend architecture patterns.

Skill
alirezarezvani

LibFuzzer

95

Coverage-guided fuzzer built into LLVM for C/C++ projects. Use for fuzzing C/C++ code that can be compiled with Clang.

Skill
trailofbits

AddressSanitizer

85

AddressSanitizer detects memory errors during fuzzing. Use when fuzzing C/C++ code to find buffer overflows and use-after-free bugs.

Skill
trailofbits

Performance Analysis

100

Comprehensive performance analysis, bottleneck detection, and optimization recommendations for Claude Flow swarms

Skill
ruvnet

Next Cache Components

100

Next.js 16 Cache Components - PPR, use cache directive, cacheLife, cacheTag, updateTag

Skill
vercel-labs

MongoDB Connection Optimizer

100

Optimize MongoDB client connection configuration (pools, timeouts, patterns) for any supported driver language. Use this skill when working/updating/reviewing on functions that instantiate or configure a MongoDB client (eg, when calling `connect()`), configuring connection pools, troubleshooting connection errors (ECONNREFUSED, timeouts, pool exhaustion), optimizing performance issues related to connections. This includes scenarios like building serverless functions with MongoDB, creating API endpoints that use MongoDB, optimizing high-traffic MongoDB applications, creating long-running tasks and concurrency, or debugging connection-related failures.

Skill
mongodb

© 2025 SkillRepo · Find the right skill, skip the noise.