OneFuzz

Other names	Project OneFuzz
Developer(s)	Microsoft
Initial release	September 18, 2020; 4 years ago (2020-09-18)
Final release	8.9.0 / October 9, 2023; 14 months ago (2023-10-09)
Repository	github.com/microsoft/onefuzz
Written in	Rust, Python
Operating system	Windows, Linux
Platform	Cross-platform
Type	Fuzzer
License	MIT License
Website	www.microsoft.com/en-us/research/project/project-onefuzz/

OneFuzz is a cross-platform free and open source fuzz testing framework by Microsoft.^[1] The software enables continuous developer-driven fuzz testing to identify weaknesses in computer software prior to release.^[2]

OneFuzz is a self-hosted fuzzing-as-a-service platform that automates the detection of software bugs that could be security issues.^[1] It supports Windows and Linux.^[2]

Notable features include composable fuzzing workflows, built-in ensemble fuzzing, programmatic triage and result de-duplication, crash reporting notification callbacks, and on-demand live-debugging of found crashes.^[3][2] The command-line interface client is written in Python 3, and targets Python 3.7 and up.^[4]

Microsoft uses the OneFuzz testing framework to probe Edge, Windows and other products at the company.^[1] It replaced the previous Microsoft Security Risk Detection software testing mechanism.^[2]

The source code was released on September 18, 2020.^[1] It is licensed under MIT License and hosted on GitHub.^[5]

On August 31, 2023, it was announced that development would be coming to an end. On November 1, 2023, the GitHub project was archived.^[5]

• Test automation
• Random testing
• American fuzzy lop (fuzzer)
• DynamoRIO
• Pin (computer program)

• Official website
• onefuzz on GitHub
• Microsoft announces new Project OneFuzz framework, an open source developer tool to find and fix bugs at scale

This article about software created, produced or developed by Microsoft is a stub. You can help Wikipedia by expanding it.

• v
• t
• e