 | |
| Other names | Project OneFuzz |
|---|---|
| Developer(s) | Microsoft |
| Initial release | September 18, 2020 |
| Final release | 8.9.0
/ October 9, 2023 |
| Repository | github |
| Written in | Rust, Python |
| Operating system | Windows, Linux |
| Platform | Cross-platform |
| Type | Fuzzer |
| License | MIT License |
| Website | www |
OneFuzz is a cross-platform free and open source fuzz testing framework by Microsoft.[1] The software enables continuous developer-driven fuzz testing to identify weaknesses in computer software prior to release.[2]
Overview
[edit]OneFuzz is a self-hosted fuzzing-as-a-service platform that automates the detection of software bugs that could be security issues.[1] It supports Windows and Linux.[2]
Notable features include composable fuzzing workflows, built-in ensemble fuzzing, programmatic triage and result de-duplication, crash reporting notification callbacks, and on-demand live-debugging of found crashes.[3][2] The command-line interface client is written in Python 3, and targets Python 3.7 and up.[4]
Microsoft uses the OneFuzz testing framework to probe Edge, Windows and other products at the company.[1] It replaced the previous Microsoft Security Risk Detection software testing mechanism.[2]
The source code was released on September 18, 2020.[1] It is licensed under MIT License and hosted on GitHub.[5]
On August 31, 2023, it was announced that development would be coming to an end. On November 1, 2023, the GitHub project was archived.[5]
See also
[edit]
References
[edit]- ^ a b c d "Microsoft: Windows 10 is hardened with these fuzzing security tools – now they're open source". ZDNet. September 15, 2020.
- ^ a b c d "Microsoft open-sources fuzzing test framework". InfoWorld. September 17, 2020.
- ^ "Microsoft's Security Group Open Sources Fuzzing Framework for Azure". ADTmag.com. September 22, 2020.
- ^ "OneFuzz- Microsoft Open Source Fuzzing Platform". hackersonlineclub.com. September 19, 2020.
- ^ a b "GitHub - microsoft/onefuzz: A self-hosted Fuzzing-As-A-Service platform". November 1, 2023 – via GitHub.
External links
[edit]- Official website
- onefuzz on GitHub
- Microsoft announces new Project OneFuzz framework, an open source developer tool to find and fix bugs at scale
Microsoft development tools | |||||||
|---|---|---|---|---|---|---|---|
| Development environments |
| ||||||
| Languages | |||||||
| APIs and frameworks |
| ||||||
| Database |
| ||||||
| Source control | |||||||
| Testing and debugging | |||||||
| Delivery | |||||||
| Main projects |
| ||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| MSR Labs applied research |
| ||||||||||||||
 | This article about software created, produced or developed by Microsoft is a stub. You can help Wikipedia by expanding it. |