SDL MiniFuzz File Fuzzer

SDL MiniFuzz File Fuzzer is a basic file fuzzing tool designed to ease adoption of fuzz testing by non-security developers who are unfamiliar with file fuzzing tools or have never used them in their current software development processes.
  • Version:

    File Name:


    Date Published:


    File Size:

    2.7 MB

      The Microsoft Security Development Lifecycle (SDL) specifies development teams should perform fuzz testing during the Verification phase of the software development process. SDL MiniFuzz File Fuzzer is a basic testing tool designed to help detect code flaws that may expose security vulnerabilities in file-handling code. This tool creates multiple random variations of file content and feeds it to the application to exercise the code in an attempt to expose unexpected and potentially insecure application behaviors.
  • Supported Operating System

    Windows 7, Windows Vista, Windows XP

      • For Visual Studio integration features: Visual Studio 2008
      • For Team Foundation Server integration features: Microsoft Team Foundation Server 2008
      • For Visual Studio Team System integration features: Microsoft Visual Studio Team System 2008
    • To set up MiniFuzz:

      1. Ensure that the host system is running the latest version of Windows OS supported by your application.
      3. If you want to install MiniFuzz as a Visual Studio add-in, ensure that you have VS 2008 or later installed on your computer.
      4. Navigate to and download MiniFuzzSetup.msi.
      5. Run the MiniFuzzSetup.msi.

      See the Help documentation included in the MiniFuzz application for further details on configuring and using MiniFuzz.

      NOTE: If you are using MiniFuzz on Windows Server 2003, you may need to manually create multiple registry keys to accommodate MiniFuzz on that version of the Sever 2003. You can run the following command-line scripts to automatically create the appropriate registry settings:

      REG add ""HKEY_CURRENT_USER\Software\Microsoft\Windows\Windows Error Reporting"" /f
      REG add ""HKEY_CURRENT_USER\Software\Microsoft\Windows\Windows Error Reporting"" /v DontShowUI /t REG_DWORD /d 1
      REG add ""HKEY_CURRENT_USER\Software\Microsoft\Windows\Windows Error Reporting"" /v ExcludedApplications /t REG_MULTI_SZ"
Site feedback

What category would you like to give web site feedback on?

Rate your level of satisfaction with this web page today: