macOS
brew install zzuflocal Homebrew formula metadata
sudo port install zzufMacPorts ports tree · security/zzuf/Portfile · source: api.github.com
brew
Transparent application input fuzzer. Version 0.15 via Homebrew; verified from local package data.
install
brew install zzuflocal Homebrew formula metadata
sudo port install zzufMacPorts ports tree · security/zzuf/Portfile · source: api.github.com
sudo apt install zzufDebian stable package indexes · zzuf · source: deb.debian.org
sudo dnf install zzufFedora Rawhide package metadata · zzuf · source: dl.fedoraproject.org
nix profile install nixpkgs#zzufnixpkgs package indexes · pkgs/by-name/zz/zzuf/package.nix · source: api.github.com
sudo pacman -S zzufArch Linux sync databases · zzuf · source: geo.mirror.pkgbuild.com
overview
Transparent application input fuzzer
history
zzuf is Sam Hocevar's transparent application input fuzzer. It runs a target program while intercepting file and network operations, flips bits in input data deterministically, and reports crashes or other interesting behavior.
zzuf grew out of the mid-2000s security and QA fuzzing culture around media parsers, image viewers, web browsers, and command-line utilities that consumed untrusted files. The Caca Labs page describes the project as a multi-purpose fuzzer whose goal is to make input fuzzing easier and more automated rather than inventing fuzzing itself.
The project had public talks and downloadable material by 2007 and 2008, including FOSDEM 2007 and Hacker Space Festival 2008 slides linked from the project page. The same page records early tarball attachments from 2008 and later snapshots, while the current development home is GitHub.
The manual-page source documents the mature command-line model: zzuf can run one program many times, vary seeds and fuzzing ratios, limit time, memory, bytes, and crashes, fuzz stdin when no command is given, and use preload or copy modes depending on platform support.
zzuf's own site names several adoption signals: Goatse Security used it against third-party applications, Adobe security researchers used it to stress-test applications and libraries, and CERT's Basic Fuzzing Framework was based on zzuf. The Fuzzing Project FAQ also lists zzuf as a simple, basic fuzzing tool for random input modification.
Its broader adoption is the classic small security-tool pattern: package managers keep a reproducible CLI available even after newer coverage-guided fuzzers became dominant, because zzuf is still useful for quick black-box corruption tests and deterministic reproducers.
Typical usage is to prefix a command with zzuf, set a seed or seed range, and choose a corruption ratio. If a run crashes, the same seed can reproduce the mutated input; simple tools such as cat or cp can then materialize the exact fuzzed file for debugging or regression tests.
The manual also supports batch testing behavior: multiple jobs, maximum crash counts, wall-clock and CPU limits, output byte limits, memory limits, include/exclude filters, protected byte ranges, and network-fuzzing filters. That made zzuf useful both as a one-off terminal tool and as a scriptable QA/security harness.
zzuf matters to package nerds because it is a compact Unix-style security tool with a long tail. It exposes a single memorable command, but underneath it depends on platform loader behavior, libc/file-operation interception, signal handling, and resource limits, which are exactly the details package maintainers have to preserve across operating systems.
It also captures a pre-AFL era of fuzzing in package form: deterministic random mutation, no source instrumentation, easy shell integration, and enough knobs to turn a simple idea into a practical crash-finding workflow.
security posture
narrow executable package without higher-risk signals.
green risk · low confidence · appliance
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
executables
| Command | Kind | Exposure | Note |
|---|---|---|---|
zzat | cli | global executable | |
zzuf | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/samhocevar/zzuf
install metadata
| Package key | brew:zzuf |
|---|---|
| Version | 0.15 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/zzuf |
| Homepage | http://caca.zoy.org/wiki/zzuf |
| Repository | https://github.com/samhocevar/zzuf |
| Upstream docs | http://caca.zoy.org/wiki/zzuf |
| License | WTFPL |
| Source archive | https://github.com/samhocevar/zzuf/releases/download/v0.15/zzuf-0.15.tar.bz2 |
| Bottle | available (on arm64_big_sur, arm64_linux, arm64_monterey, arm64_sequoia, arm64_sonoma, arm64_tahoe, arm64_ventura, big_sur, catalina, monterey, sonoma, ventura, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | zzuf |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
zzuf 0.15-5+b1
transparent application fuzzer
https://caca.zoy.org/wiki/zzuf
sudo apt install zzufzzuf
nix profile install nixpkgs#zzufzzuf 0.15-2build3
transparent application fuzzer
https://caca.zoy.org/wiki/zzuf
sudo apt install zzufzzuf 0.15-26.fc44
Transparent application input fuzzer
sudo dnf install zzufzzuf 0.15-3
Transparent application input fuzzer
https://github.com/samhocevar/zzuf
sudo pacman -S zzufzzuf
sudo port install zzufsource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.