gaybro8777 / clusterfuzz

Scalable fuzzing infrastructure.

Home Page:

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool


ClusterFuzz is a scalable fuzzing infrastructure which finds security and stability issues in software.

It is used by Google for fuzzing the Chrome Browser, and serves as the fuzzing backend for OSS-Fuzz.

ClusterFuzz provides many features which help seamlessly integrate fuzzing into a software project's development process:

  • Highly scalable. Google's internal instance runs on over 25,000 machines.
  • Accurate deduplication of crashes.
  • Fully automatic bug filing and closing for issue trackers (Monorail only for now).
  • Testcase minimization.
  • Regression finding through bisection.
  • Statistics for analyzing fuzzer performance, and crash rates.
  • Easy to use web interface for management and viewing crashes.
  • Support for coverage guided fuzzing (e.g. libFuzzer and AFL) and blackbox fuzzing.



You can find detailed documentation here.


As of January 2019, ClusterFuzz has found ~16,000 bugs in Chrome and ~11,000 bugs in over 160 open source projects integrated with OSS-Fuzz.

Getting Help

You can file an issue to ask questions, request features, or ask for help.

Staying Up to Date

We will use clusterfuzz-announce(#) to make announcements about ClusterFuzz.


Scalable fuzzing infrastructure.

License:Apache License 2.0


Language:Python 83.7%Language:HTML 9.8%Language:Go 3.5%Language:Shell 1.5%Language:Dockerfile 0.5%Language:CSS 0.3%Language:PowerShell 0.3%Language:C++ 0.3%Language:JavaScript 0.2%Language:Ruby 0.0%