ReddRadar
Agent skill
protocol-fuzzer
Expert skill for protocol fuzzing, vulnerability discovery, and security testing
Install this agent skill to your Project
npx add-skill https://github.com/a5c-ai/babysitter/tree/main/library/specializations/network-programming/skills/protocol-fuzzer
SKILL.md
Protocol Fuzzer Skill
Expert skill for protocol fuzzing, vulnerability discovery, and security testing of network protocols.
Capabilities
- Fuzzer Configuration: Configure AFL++, libFuzzer, boofuzz, and Peach Fuzzer
- Mutation Strategy Design: Generate effective mutation strategies for different protocols
- Coverage Analysis: Analyze code coverage and crash reports
- Grammar Definition: Create protocol grammar definitions for structured fuzzing
- Vulnerability Detection: Detect crash patterns, memory corruption, and security vulnerabilities
- Test Case Generation: Generate reproducible test cases from fuzzing results
- Crash Triage: Analyze and deduplicate crash reports
- Security Reporting: Generate security vulnerability reports
Tools and Dependencies
AFL++- American Fuzzy Lop Plus PluslibFuzzer- LLVM-based in-process fuzzerboofuzz- Network protocol fuzzer (Sulley successor)Peach Fuzzer- Smart fuzzing frameworkradamsa- General-purpose fuzzerhonggfuzz- Security-oriented fuzzer
Target Processes
- protocol-fuzzer.js
- binary-protocol-parser.js
- network-testing-framework.js
Usage Examples
Boofuzz Protocol Fuzzing
from boofuzz import *
session = Session(target=Target(connection=TCPSocketConnection("127.0.0.1", 8080)))
s_initialize("HTTP Request")
s_string("GET", fuzzable=False)
s_delim(" ", fuzzable=False)
s_string("/", name="path")
s_static("\r\n\r\n")
session.connect(s_get("HTTP Request"))
session.fuzz()
AFL++ Instrumented Fuzzing
afl-fuzz -i input_corpus -o findings -M main -- ./target @@
afl-cov -d findings --coverage-cmd "./target AFL_FILE" --code-dir src/
Crash Analysis
afl-analyze -i crash_file -- ./target @@
Quality Gates
- Coverage threshold achieved
- No critical vulnerabilities found
- All crashes triaged
- Reproducible test cases generated
- Security report completed
Recommended Agent Skills
Expand your agent's capabilities with these related and highly-rated skills.
a5c-ai/babysitter
gsd-tools
Central utility skill for GSD operations. Provides config parsing, slug generation, timestamps, path operations, and orchestrates calls to other specialized skills. Acts as the unified entry point that the original gsd-tools.cjs provided via its lib/ modules (commands, config, core, init).
a5c-ai/babysitter
model-profile-resolution
Resolve model profile (quality/balanced/budget) at orchestration start and map agents to specific models. Enables cost/quality tradeoffs by selecting appropriate AI models for each agent role.
a5c-ai/babysitter
verification-suite
Plan structure validation, phase completeness checks, reference integrity verification, and artifact existence confirmation. Provides the structured verification layer ensuring GSD artifacts are well-formed and complete.
a5c-ai/babysitter
state-management
STATE.md reading, writing, and field-level updates. Provides cross-session state persistence via .planning/STATE.md with structured fields for current task, completed phases, blockers, decisions, and quick tasks.
a5c-ai/babysitter
git-integration
Git commit patterns, formats, and conventions for GSD methodology. Provides atomic commits per task, structured commit messages, planning file commits, branch management, and milestone tag operations.
a5c-ai/babysitter
frontmatter-parsing
YAML frontmatter parsing and manipulation for .planning/ documents. Provides read, write, update, query, and validation operations on frontmatter blocks in GSD markdown artifacts.
Didn't find tool you were looking for?