oss-fuzz-gen and PromeFuzz

These are competitors—both use LLMs to automatically generate fuzzing harnesses, with oss-fuzz-gen being Google's production-grade framework integrated with OSS-Fuzz infrastructure, while PromeFuzz offers an alternative knowledge-driven approach for the same core problem.

oss-fuzz-gen
59
Established
PromeFuzz
50
Established
Maintenance 10/25
Adoption 10/25
Maturity 16/25
Community 23/25
Maintenance 10/25
Adoption 8/25
Maturity 15/25
Community 17/25
Stars: 1,372
Forks: 208
Downloads:
Commits (30d): 0
Language: Python
License: Apache-2.0
Stars: 50
Forks: 10
Downloads:
Commits (30d): 0
Language: C++
License: MIT
No Package No Dependents
No Package No Dependents

About oss-fuzz-gen

google/oss-fuzz-gen

LLM powered fuzzing via OSS-Fuzz.

Generates fuzz targets across C/C++, Java, and Python by prompting multiple LLMs (Vertex AI, Gemini, GPT-4) to synthesize harnesses, then evaluates them against OSS-Fuzz infrastructure using metrics like compilability, crash detection, and coverage gain versus human-written targets. The framework discovered 30+ real vulnerabilities including CVE-2024-9143 in OpenSSL, demonstrating LLM-generated targets can achieve up to 29% additional line coverage on production projects.

About PromeFuzz

pvz122/PromeFuzz

PromeFuzz: A Knowledge-Driven Approach to Fuzzing Harness Generation with Large Language Models

Related comparisons

oss-fuzz-gen and ps-fuzz oss-fuzz-gen and fuzz4all oss-fuzz-gen and LLMFuzzer oss-fuzz-gen and circinus oss-fuzz-gen and LegoFuzz

Scores updated daily from GitHub, PyPI, and npm data. How scores work