ExternalVendorCode/AFLplusplus

mirror of https://github.com/AFLplusplus/AFLplusplus.git synced 2025-06-08 08:11:34 +00:00

History

van Hauser 128e4d5565 more typos fixed

2020-05-05 20:23:16 +02:00

..

afl-untracer.c

more typos fixed

2020-05-05 20:23:16 +02:00

ghidra_get_patchpoints.java

add ghidra script and workaround ghidra/linux/ida weirdness

2020-05-01 17:07:44 +02:00

ida_get_patchpoints.py

add ghidra script and workaround ghidra/linux/ida weirdness

2020-05-01 17:07:44 +02:00

libtestinstr.c

code format

2020-05-01 01:11:54 +02:00

Makefile

afl-untracer completed

2020-04-30 17:59:59 +02:00

patches.txt

afl-untracer completed

2020-04-30 17:59:59 +02:00

README.md

add ghidra script and workaround ghidra/linux/ida weirdness

2020-05-01 17:07:44 +02:00

README.md

afl-untracer

afl-untracer is an example skeleton file which can easily be used to fuzz a closed source library.

It requires less memory than qemu_mode however it is way more course grained and does not provide interesting features like compcov or cmplog.

Read and modify afl-untracer.c then make and use it as the afl-fuzz target (or even remote via afl-network-proxy).

To generate the patches.txt file for your target library use the ida_get_patchpoints.py script for IDA Pro or ghidra_get_patchpoints.java for Ghidra.

This idea is based on UnTracer and modified by Trapfuzz. This implementation is slower because the traps are not patched out with each run, but on the other hand gives much better coverage information.