A professional-grade DICOM fuzzing tool for healthcare security testing
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Project description
DICOM Fuzzer
Mutation-based fuzzer for robustness testing of DICOM medical imaging viewers and parsers. Generates malformed DICOM files and feeds them into target applications to find crashes and vulnerabilities.
Installation
For end users (run the CLI)
Install from PyPI as an isolated tool so dicom-fuzzer is on your PATH everywhere, without polluting your system Python:
# Recommended: uv (fast, modern)
uv tool install dicom-fuzzer
# Alternative: pipx (same idea, different manager)
pipx install dicom-fuzzer
# Alternative: pip into the active environment
pip install dicom-fuzzer
After installation:
dicom-fuzzer --help
Optional extras are needed only for specific features (target process monitoring, Windows crash dump parsing, HTML reports, GUI automation):
uv tool install "dicom-fuzzer[all]"
# or, if you only need specific extras:
pip install dicom-fuzzer psutil minidump tqdm rich matplotlib jinja2 pywinauto
For contributors (develop the code)
git clone https://github.com/Dashtid/DICOM-Fuzzer.git
cd DICOM-Fuzzer
uv sync
source .venv/Scripts/activate # Windows/Git Bash
# source .venv/bin/activate # macOS/Linux
To run your local checkout as a global CLI while developing:
uv tool install --editable .
Source edits take effect immediately with no reinstall.
Quick Start
# Generate 100 fuzzed DICOM files
dicom-fuzzer input.dcm -c 100 -o ./artifacts/output
# Fuzz and test against a target viewer
dicom-fuzzer input.dcm -c 1000 -t ./viewer.exe --timeout 10
# Generate seed corpus for AFL/WinAFL
dicom-fuzzer generate-seeds input.dcm -c 500 -o ./seeds/
Features
Fuzzing
- Format fuzzing (production): 24 single-file mutation strategies targeting VR types, pixel data, sequences, encoding, and modality-specific tags
- Modality-specific fuzzers: CT/MR calibration, NM, PET, RT Dose, RT Structure Set, Segmentation, Secondary Capture, Encapsulated PDF, Pixel Reencoding
- Target scope filtering (
--target-type viewer|web|pacs) - Multiframe fuzzing (WIP): 10 strategies for enhanced imaging objects -- functional groups, frame counts, dimension indices
- Series/study fuzzing (WIP): cross-series geometry, temporal ordering, patient consistency
- Network protocol fuzzing (WIP): PDU construction, DIMSE commands, state machine, TLS
Supported SOP classes
Seed corpus plus dedicated fuzzer coverage (mutations are only meaningful when both exist):
| Modality | SOP Class UID | Modality fuzzer |
|---|---|---|
| CT Image | 1.2.840.10008.5.1.4.1.1.2 | calibration |
| MR Image | 1.2.840.10008.5.1.4.1.1.4 | calibration |
| NM Image | 1.2.840.10008.5.1.4.1.1.20 | nuclear_medicine |
| PET Image | 1.2.840.10008.5.1.4.1.1.128 | pet |
| RT Dose | 1.2.840.10008.5.1.4.1.1.481.2 | rt_dose |
| RT Structure Set | 1.2.840.10008.5.1.4.1.1.481.3 | rt_structure_set |
| Segmentation | 1.2.840.10008.5.1.4.1.1.66.4 | segmentation |
| Secondary Capture | 1.2.840.10008.5.1.4.1.1.7 | secondary_capture |
| Encapsulated PDF | 1.2.840.10008.5.1.4.1.1.104.1 | encapsulated_pdf |
Generic fuzzers (structure, metadata, header, preamble,
sequence, dictionary, etc.) run across all modalities.
Analysis
- Automatic crash detection and deduplication
- Crash triaging with severity and exploitability scoring
- Test case minimization
- Corpus management
- Markdown campaign reports with per-strategy hit rates
Integration
- CLI with 14 subcommands
- Python API for custom workflows
- Docker container for isolated execution
- CI/CD compatible
CLI Reference
dicom-fuzzer --help # Main fuzzing campaign
dicom-fuzzer target --help # Target testing
dicom-fuzzer generate-seeds --help # Seed corpus generation
dicom-fuzzer sanitize --help # Strip PHI from seed files
dicom-fuzzer replay --help # Decompose fuzzed files
dicom-fuzzer report --help # Report generation
dicom-fuzzer triage --help # Crash triaging
dicom-fuzzer corpus --help # Corpus management
See docs/CLI_REFERENCE.md for full command documentation.
Python API
from dicom_fuzzer.core.mutation.mutator import DicomMutator
import pydicom
mutator = DicomMutator()
dataset = pydicom.dcmread("input.dcm")
for i in range(100):
fuzzed = mutator.apply_mutations(dataset)
fuzzed.save_as(f"artifacts/output/fuzz_{i:04d}.dcm")
Project Structure
dicom-fuzzer/
├── dicom_fuzzer/ # Main package
│ ├── attacks/ # Attack modules (format, series, network, multiframe)
│ ├── cli/ # Command-line interface (14 subcommands)
│ ├── core/ # Engine, mutation, corpus, crash analysis, harness, reporting
│ └── utils/ # Logging, hashing, identifiers
├── tests/ # Test suite
├── docs/ # Documentation
└── artifacts/ # Runtime output (gitignored)
Documentation
Security
This tool is for authorized security testing only. See SECURITY.md.
License
MIT - see LICENSE
Project details
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file dicom_fuzzer-1.11.0.tar.gz.
File metadata
- Download URL: dicom_fuzzer-1.11.0.tar.gz
- Upload date:
- Size: 1.0 MB
- Tags: Source
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/6.1.0 CPython/3.13.13
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
63534b1c3285980a88ca76b41f049cba1040b1ca0f0e6ee6171e9551ca86c4d3
|
|
| MD5 |
3bc7f45f4386c1c944bdf4289f45e05f
|
|
| BLAKE2b-256 |
1727b817cd1258e134f668bb37eda4f2e545fbac24b2d223578311c985fdf9aa
|
Provenance
The following attestation bundles were made for dicom_fuzzer-1.11.0.tar.gz:
Publisher:
release.yml on Dashtid/dicom-fuzzer
-
Statement:
-
Statement type:
https://in-toto.io/Statement/v1 -
Predicate type:
https://docs.pypi.org/attestations/publish/v1 -
Subject name:
dicom_fuzzer-1.11.0.tar.gz -
Subject digest:
63534b1c3285980a88ca76b41f049cba1040b1ca0f0e6ee6171e9551ca86c4d3 - Sigstore transparency entry: 1356777418
- Sigstore integration time:
-
Permalink:
Dashtid/dicom-fuzzer@099173671001b86dd4c0e453458c516ab86acb9b -
Branch / Tag:
refs/tags/v1.11.0 - Owner: https://github.com/Dashtid
-
Access:
public
-
Token Issuer:
https://token.actions.githubusercontent.com -
Runner Environment:
github-hosted -
Publication workflow:
release.yml@099173671001b86dd4c0e453458c516ab86acb9b -
Trigger Event:
workflow_dispatch
-
Statement type:
File details
Details for the file dicom_fuzzer-1.11.0-py3-none-any.whl.
File metadata
- Download URL: dicom_fuzzer-1.11.0-py3-none-any.whl
- Upload date:
- Size: 434.2 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/6.1.0 CPython/3.13.13
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
73a1447a3c1f35d7b78821c5ac9cf08323633202f94a9751b92920a955e587e9
|
|
| MD5 |
fd155fc70d233f368be3eb4b45044dd7
|
|
| BLAKE2b-256 |
a186a04b5c81a2021326f13778cf95a8ab58d53ef52a42071c03340f9bbf7327
|
Provenance
The following attestation bundles were made for dicom_fuzzer-1.11.0-py3-none-any.whl:
Publisher:
release.yml on Dashtid/dicom-fuzzer
-
Statement:
-
Statement type:
https://in-toto.io/Statement/v1 -
Predicate type:
https://docs.pypi.org/attestations/publish/v1 -
Subject name:
dicom_fuzzer-1.11.0-py3-none-any.whl -
Subject digest:
73a1447a3c1f35d7b78821c5ac9cf08323633202f94a9751b92920a955e587e9 - Sigstore transparency entry: 1356777430
- Sigstore integration time:
-
Permalink:
Dashtid/dicom-fuzzer@099173671001b86dd4c0e453458c516ab86acb9b -
Branch / Tag:
refs/tags/v1.11.0 - Owner: https://github.com/Dashtid
-
Access:
public
-
Token Issuer:
https://token.actions.githubusercontent.com -
Runner Environment:
github-hosted -
Publication workflow:
release.yml@099173671001b86dd4c0e453458c516ab86acb9b -
Trigger Event:
workflow_dispatch
-
Statement type:
