https://github.com/fandango-fuzzer/fandango
FANDANGO is a language-based fuzzer that leverages formal input specifications (grammars) combined with constraints to generate diverse sets of valid inputs for programs under test.
https://github.com/fandango-fuzzer/fandango
fuzzing grammar-based-fuzzing search-based-software-testing
Last synced: 4 months ago
JSON representation
FANDANGO is a language-based fuzzer that leverages formal input specifications (grammars) combined with constraints to generate diverse sets of valid inputs for programs under test.
- Host: GitHub
- URL: https://github.com/fandango-fuzzer/fandango
- Owner: fandango-fuzzer
- License: eupl-1.2
- Created: 2024-08-16T18:17:32.000Z (almost 2 years ago)
- Default Branch: main
- Last Pushed: 2026-02-24T22:57:28.000Z (4 months ago)
- Last Synced: 2026-02-25T00:52:43.447Z (4 months ago)
- Topics: fuzzing, grammar-based-fuzzing, search-based-software-testing
- Language: Python
- Homepage: https://fandango-fuzzer.github.io/
- Size: 35.8 MB
- Stars: 105
- Watchers: 3
- Forks: 15
- Open Issues: 44
-
Metadata Files:
- Readme: README.md
- Contributing: docs/Contributing.md
- License: LICENSE.md
- Security: SECURITY.md
Awesome Lists containing this project
README
# Welcome to Fandango!
[](https://pypi.org/project/fandango-fuzzer/) [](https://github.com/fandango-fuzzer/fandango/releases)
[](https://github.com/fandango-fuzzer/fandango/actions/workflows/python-tests.yml) [](https://github.com/fandango-fuzzer/fandango/actions/workflows/code-checks.yml) [](https://github.com/fandango-fuzzer/fandango/actions/workflows/github-code-scanning/codeql) [](https://pypi.org/project/fandango-fuzzer/) [](https://pepy.tech/projects/fandango-fuzzer) [](https://github.com/fandango-fuzzer/fandango/stargazers)
> **Fandango** is a powerful generator of inputs and interactions designed for software testing. Given the specification of a program's input or interaction language, Fandango quickly generates a myriad of valid inputs to test your systems.
### β¨ Expressive & Flexible Specifications
Fandango's specification language combines a **grammar** with **constraints written in Python**, making it incredibly expressive.
* **Custom Testing Goals:** Define exactly what you need. If you require your inputs to have particular values or follow specific distributions, you can express these testing goals directly in Fandango right out of the box.
### π Versatile Modes of Operation
Fandango adapts to your workflow by supporting multiple operating modes:
* **Black-Box Fuzzing (Default):** Generate inputs directly from a `.fan` Fandango specification file.
* **Input Mutation:** Feed Fandango your sample inputs, and it will mutate them to obtain more complex and realistic test cases.
* **Protocol Fuzzing:** Generate dynamic interactions. Fandango can act as a client or server, producing and reacting to interactions according to your protocol specifications.
### π§ Under the Hood
Fandango comes as a portable Python program, meaning it runs easily on a large variety of platforms. To produce its inputs, it leverages sophisticated **evolutionary algorithms**. It starts with a population of random inputs and systematically evolves them through mutations and cross-overs until they perfectly fulfill your given constraints.
### πΊοΈ Road to 2026
Fandango is in active development! We are constantly expanding its capabilities. Features planned for 2026 include:
* Coverage-guided testing
* Code-directed testing
* High-diversity input generation
* ...and much more!
π **Ready to dive deeper?** For complete documentation, including tutorials, references, and advanced usage guides, visit the [Fandango Documentation](https://fandango-fuzzer.github.io/).
## License
Fandango is licensed under the European Union Public Licence V. 1.2. See the [LICENSE](https://github.com/fandango-fuzzer/fandango/blob/main/LICENSE.md) file for details.