Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

aeondave/jazzer

Name: jazzer
Author: aeondave

offensive-tools/fuzzing/jazzer/SKILL.md

npx skillsauth add aeondave/malskill jazzer

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

jazzer

JVM-native fuzzing engine with @FuzzTest workflow and built-in security bug detectors.

Quick Start

<!-- pom.xml -->
<dependency>
  <groupId>com.code-intelligence</groupId>
  <artifactId>jazzer-junit</artifactId>
  <version>LATEST</version>
</dependency>

@FuzzTest
void fuzzDecode(String input) {
  assertEquals(input, decode(encode(input)));
}

# Fuzzing mode
JAZZER_FUZZ=1 mvn test

Operator Flow

Start with JUnit @FuzzTest in a narrow API surface.
Seed meaningful examples (parameter sources + existing regression inputs).
Run fuzz mode to discover, then store crash inputs under test resources.
Keep regression mode in CI to prevent bug reintroduction.
Expand instrumentation scope only when throughput remains acceptable.

Key Points

Regression mode by default; fuzz mode via env var.
Stores generated corpus and crashing inputs in predictable directories.
Includes bug detectors (e.g., SSRF / path traversal / command injection classes).

Practical Tricks

Use annotations (@WithUtf8Length, @InRange, etc.) to constrain data and improve signal density.
Tune run duration with maxDuration / max_total_time style controls.
Configure instrumentation includes/excludes to avoid useless classpath overhead.
Explicitly manage detector hooks if false positives appear in complex multi-thread setups.

Common Pitfalls

One giant fuzz test that mixes unrelated APIs reduces triage quality.
Ignoring corpus path conventions causes lost regressions.
Treating finder output as final root cause without replaying and minimizing reproducer.

Configuration Notes

Option precedence matters: defaults < env vars < system properties < JUnit params < CLI.
For standalone mode, verify classpath and target class/method wiring first.

Resources

https://github.com/CodeIntelligenceTesting/jazzer
https://github.com/CodeIntelligenceTesting/jazzer/blob/main/docs/arguments-and-configuration-options.md
https://llvm.org/docs/LibFuzzer.html
https://google.github.io/oss-fuzz/getting-started/new-project-guide/jvm-lang/

aeondave/jazzer

offensive-tools/fuzzing/jazzer/SKILL.md

Auth/lab ref: Coverage-guided in-process fuzzing for JVM (Java/Kotlin/etc), based on libFuzzer concepts.

4 stars

development

Updated Jun 8, 2026

$ install --global

skillsauth

npx skillsauth add aeondave/malskill jazzer

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Jun 8, 2026, 3:51 AM169.8s1 file scanned

SKILL.md

name:: jazzer
description:: Auth/lab ref: Coverage-guided in-process fuzzing for JVM (Java/Kotlin/etc), based on libFuzzer concepts.
license:: Apache-2.0
compatibility:: Linux/macOS/Windows x64 JVM workflows; Maven/Gradle/Bazel supported.
author:: GitHub Copilot
version:: 1.1

jazzer

JVM-native fuzzing engine with @FuzzTest workflow and built-in security bug detectors.

Quick Start

<!-- pom.xml -->
<dependency>
  <groupId>com.code-intelligence</groupId>
  <artifactId>jazzer-junit</artifactId>
  <version>LATEST</version>
</dependency>

@FuzzTest
void fuzzDecode(String input) {
  assertEquals(input, decode(encode(input)));
}

# Fuzzing mode
JAZZER_FUZZ=1 mvn test

Operator Flow

Start with JUnit @FuzzTest in a narrow API surface.
Seed meaningful examples (parameter sources + existing regression inputs).
Run fuzz mode to discover, then store crash inputs under test resources.
Keep regression mode in CI to prevent bug reintroduction.
Expand instrumentation scope only when throughput remains acceptable.

Key Points

Regression mode by default; fuzz mode via env var.
Stores generated corpus and crashing inputs in predictable directories.
Includes bug detectors (e.g., SSRF / path traversal / command injection classes).

Practical Tricks

Use annotations (@WithUtf8Length, @InRange, etc.) to constrain data and improve signal density.
Tune run duration with maxDuration / max_total_time style controls.
Configure instrumentation includes/excludes to avoid useless classpath overhead.
Explicitly manage detector hooks if false positives appear in complex multi-thread setups.

Common Pitfalls

One giant fuzz test that mixes unrelated APIs reduces triage quality.
Ignoring corpus path conventions causes lost regressions.
Treating finder output as final root cause without replaying and minimizing reproducer.

Configuration Notes

Option precedence matters: defaults < env vars < system properties < JUnit params < CLI.
For standalone mode, verify classpath and target class/method wiring first.

Resources

https://github.com/CodeIntelligenceTesting/jazzer
https://github.com/CodeIntelligenceTesting/jazzer/blob/main/docs/arguments-and-configuration-options.md
https://llvm.org/docs/LibFuzzer.html
https://google.github.io/oss-fuzz/getting-started/new-project-guide/jvm-lang/

Related Skills

aeondave/vibe-audit-technique

development

VerifiedTrustedCommunity

White-box auditing methodology for AI-generated ('vibe-coded') applications. Focuses on modern stack misconfigurations (Supabase, Next.js, Vercel).

4SKILL.mdUpdated Jun 12, 2026

aeondave/vibe-audit-technique

aeondave/source-review-technique

development

VerifiedTrustedCommunity

Hybrid AI/Deterministic SAST methodology for discovering zero-day vulnerabilities in source code. Orchestrates structural search with AI-driven data flow and sink validation.

4SKILL.mdUpdated Jun 12, 2026

aeondave/source-review-technique

aeondave/hardware-technique

development

VerifiedTrustedCommunity

Auth assessment: hardware/embedded methodology; UART/JTAG/SWD/SPI/I2C, firmware extraction, boot/debug paths, embedded OS evidence.

4SKILL.mdUpdated Jun 12, 2026

aeondave/hardware-technique

aeondave/container-technique

devops

VerifiedTrustedCommunity

Container methodology: Identifying containerization limits, Docker/K8s misconfigurations, and executing escapes to the host node.

4SKILL.mdUpdated Jun 12, 2026

aeondave/container-technique

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/aeondave/malskill.git

# Copy into Claude Code skills folder (global)
cp -r malskill/offensive-tools/fuzzing/jazzer ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

aeondave/malskill

4 stars

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT