fuzz-testing

Solid

Fuzzing for finding edge cases and crashes

Testing & QA 183 stars 39 forks Updated 1 months ago MIT

Install

View on GitHub

Quality Score: 90/100

Stars 20%

Recency 20%

Frontmatter 20%

Documentation 15%

100

Issue Health 10%

License 10%

100

Description 5%

100

Skill Content

# Skill: fuzz-testing ## What I do I guide fuzzing strategy: use Go's built-in fuzz testing to discover edge cases, crashes, and unexpected behaviour by feeding random and mutated inputs to functions. Covers target selection, corpus management, and crash analysis. ## When to use me - Testing parsers, validators, or serialisation functions - Finding edge cases in string/data processing - Discovering panic-inducing inputs - Hardening public API surfaces - After fixing a bug (add crash input to corpus) ## Core principles 1. **Fuzz boundaries** - Focus on functions that parse, validate, or transform input 2. **Start with a seed corpus** - Provide known-good inputs as starting points 3. **Run long enough** - Short runs miss rare crashes (minimum 30 seconds) 4. **Fix crashes, add to corpus** - Every crash input becomes a regression test 5. **Fuzz one function at a time** - Isolated targets give clearer results ## Target selection ``` GOOD FUZZ TARGETS (high value) Parsers (JSON, YAML, custom formats) Validators (email, URL, date strings) Serialisation/deserialisation String manipulation functions Type conversion functions POOR FUZZ TARGETS (low value) Simple getters/setters Database queries (need infrastructure) UI rendering functions Functions with no error paths ``` ## Patterns & examples **Basic Go fuzz test:** ```go func FuzzParseDate(f *testing.F) { // Seed corpus with known inputs f.Add("2024-01-15") f.Add("2023-12-31") f.Add("") ...

Details

Author: majiayu000
Repository: majiayu000/claude-skill-registry
Created: 5 months ago
Last Updated: 1 months ago
Language: Python
License: MIT

Integrates with

Vercel · Cloud

Similar Skills

Semantically similar based on skill content — not just same category

Testing & QA Listed

fuzz-testing

Fuzzing for finding edge cases and crashes

0 Updated 2 months ago

baphled

Testing & QA Listed

fuzz-testing

Fuzzing for finding edge cases and crashes

3 Updated 1 months ago

majiayu000

AI & Automation Solid

fuzzing-apis

This skill enables Claude to perform automated fuzz testing on APIs to discover vulnerabilities, crashes, and unexpected behavior. It leverages malformed inputs, boundary values, and random payloads to generate comprehensive fuzz test suites. Use this skill when you need to identify potential SQL injection, XSS, command injection vulnerabilities, input validation failures, and edge cases in APIs. Trigger this skill by requesting fuzz testing, vulnerability scanning, or security analysis of an API. The skill is invoked using the `/fuzz-api` command.

2,274 Updated today

jeremylongshore

AI & Automation Solid

protocol-fuzzer

Expert skill for protocol fuzzing, vulnerability discovery, and security testing

1,160 Updated today

a5c-ai

Testing & QA Solid

703-technologies-fuzzing-testing

Use when you need to add or review fuzz testing for Java APIs with CATS — including contract-driven negative testing, malformed payload validation, boundary input exploration, CI integration, reproducible failures, and local execution guidance. Part of the skills-for-java project

393 Updated today

jabrena