Tool Documentation:

sfuzz Usage Example

Fuzz the target server (-S 192.168.1.1) on port 10443 (-p 10443) with TCP output mode (-T), using the basic HTTP config (-f /usr/share/sfuzz/sfuzz-sample/basic.http):

root@kali:~# sfuzz -S 192.168.1.1 -p 10443 -T -f /usr/share/sfuzz/sfuzz-sample/basic.http
[12:53:47] dumping options:
    filename: </usr/share/sfuzz/sfuzz-sample/basic.http>
    state:    <8>
    lineno:   <56>
    literals:  [74]
    sequences: [34]
    symbols: [0]
    req_del:  <200>
    mseq_len: <10024>
    plugin: <none>
    s_syms: <0>
    literal[1] = [AREALLYBADSTRING]

Packages and Binaries:

sfuzz

In the same vein as the Generic Protocol Framework, sfuzz is a really simple to use black box testing suite called Simple Fuzzer (what else would you expect?). The goal is to provide a simple to use, but fairly powerful and flexible black box testing utility.

Installed size: 191 KB
How to install: sudo apt install sfuzz

Dependencies:
  • libc6
sfo
root@kali:~# sfo -h
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1708983].
[1708983] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1709238].
[1709238] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1709473].
[1709473] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1709683].
[1709683] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1709932].
[1709932] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1710186].
[1710186] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1710452].
[1710452] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1710670].
[1710670] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1710915].
[1710915] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1711155].
[1711155] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1711384].
[1711384] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1711611].
[1711611] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1711815].
[1711815] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1712062].
[1712062] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1712309].
[1712309] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1712545].
[1712545] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1712745].
[1712745] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1712982].
[1712982] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1713158].
[1713158] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1713392].
[1713392] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1713661].
[1713661] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1713828].
[1713828] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1713926].
[1713926] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1714072].
[1714072] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1714261].
[1714261] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1714444].
[1714444] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1714559].
[1714559] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [1714709].
[1714709] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting t
sfuzz
root@kali:~# sfuzz -h
		Simple Fuzzer
By:	 Aaron Conole
version: 0.7.0
url:	 http://aconole.brad-x.com/programs/sfuzz.html
EMAIL:	 [email protected]
Build-prefix: /usr
	-h	 This message.
	-V	 Version information.

networking / output:
	-v	 Verbose output
	-q	 Silent output mode (generally for CLI fuzzing)
	-X	 prints the output in hex

	-b	 Begin fuzzing at the test specified.
	-e	 End testing on failure.
	-t	 Wait time for reading the socket
	-S	 Remote host
	-p	 Port
	-T|-U|-O TCP|UDP|Output mode
	-R	 Refrain from closing connections (ie: "leak" them)

	-f	 Config File
	-L	 Log file
	-n	 Create a new logfile after each fuzz
	-r	 Trim the tailing newline
	-D	 Define a symbol and value (X=y).
	-l	 Only perform literal fuzzing
	-s	 Only perform sequence fuzzing


Updated on: 2025-Aug-26