Tool Documentation:

sfuzz Usage Example

Fuzz the target server (-S 192.168.1.1) on port 10443 (-p 10443) with TCP output mode (-T), using the basic HTTP config (-f /usr/share/sfuzz/sfuzz-sample/basic.http):

root@kali:~# sfuzz -S 192.168.1.1 -p 10443 -T -f /usr/share/sfuzz/sfuzz-sample/basic.http
[12:53:47] dumping options:
    filename: </usr/share/sfuzz/sfuzz-sample/basic.http>
    state:    <8>
    lineno:   <56>
    literals:  [74]
    sequences: [34]
    symbols: [0]
    req_del:  <200>
    mseq_len: <10024>
    plugin: <none>
    s_syms: <0>
    literal[1] = [AREALLYBADSTRING]

Packages and Binaries:

sfuzz

In the same vein as the Generic Protocol Framework, sfuzz is a really simple to use black box testing suite called Simple Fuzzer (what else would you expect?). The goal is to provide a simple to use, but fairly powerful and flexible black box testing utility.

Installed size: 191 KB
How to install: sudo apt install sfuzz

Dependencies:
  • libc6
sfo
root@kali:~# sfo -h
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4023444].
[4023444] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4023694].
[4023694] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4023928].
[4023928] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4024174].
[4024174] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4024430].
[4024430] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4024657].
[4024657] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4024905].
[4024905] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4025155].
[4025155] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4025402].
[4025402] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4025666].
[4025666] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4025921].
[4025921] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4025925].
[4025925] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4026166].
[4026166] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4026309].
[4026309] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4026554].
[4026554] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4026808].
[4026808] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4027037].
[4027037] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4027286].
[4027286] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4027529].
[4027529] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4027781].
[4027781] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4028034].
[4028034] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4028271].
[4028271] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4028504].
[4028504] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4028634].
[4028634] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4028851].
[4028851] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4029067].
[4029067] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4029294].
[4029294] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting to spawn a monitored task.
[SFUZZ-ORACLE] attached [4029531].
[4029531] Exited (possibly normal), status[255]
 [sfo] === spawning!
[] Attempting t
sfuzz
root@kali:~# sfuzz -h
		Simple Fuzzer
By:	 Aaron Conole
version: 0.7.0
url:	 http://aconole.brad-x.com/programs/sfuzz.html
EMAIL:	 [email protected]
Build-prefix: /usr
	-h	 This message.
	-V	 Version information.

networking / output:
	-v	 Verbose output
	-q	 Silent output mode (generally for CLI fuzzing)
	-X	 prints the output in hex

	-b	 Begin fuzzing at the test specified.
	-e	 End testing on failure.
	-t	 Wait time for reading the socket
	-S	 Remote host
	-p	 Port
	-T|-U|-O TCP|UDP|Output mode
	-R	 Refrain from closing connections (ie: "leak" them)

	-f	 Config File
	-L	 Log file
	-n	 Create a new logfile after each fuzz
	-r	 Trim the tailing newline
	-D	 Define a symbol and value (X=y).
	-l	 Only perform literal fuzzing
	-s	 Only perform sequence fuzzing

Updated on: 2024-Nov-20