AFL AFL / WinAFL Tips and Tricks Hi there As you all know there are so many tutorials online explaining how to use AFL online, some of them introduce some really cool tricks that helps AFL or WinAFL to find more bugs or to fuzz faster. The goal of this blog post is to collect these tricks
Hacking Building a Feedback Driven Fuzzer - Dev Log 4 : GUI is Here Note: If you haven't read previous posts about the fuzzer, I recommend you read them here Hi There, It has been a while since I posted about my fuzzer, I was a little busy with other stuff but I did have some time to make a GUI for the fuzzer.
Hacking Building a Feedback Driven Fuzzer - Dev Log 3 : Radamsa Integration Hello again, we are back with our third devlog, today we will talk about how I integrated radamsa as my mutation engine. My first attempt at this was by forking radamsa for each iteration, meaning that I needed to fork the fuzzed program and also fork radmasa to generate the
Hacking Building a Feedback Driven Fuzzer - Dev Log 2 : Coverage Hello again, so today we will talk about how I calculate coverage by counting the basic blocks that gets executed. A very easy way to do it is to use DynamoRio, Dynamorio is a dynamic instrumentation framework, luckily for me dynamo rio comes with drcov which is a module to
Hacking Building a Feedback Driven Fuzzer - Dev Log 1 Feedback driven fuzzing (AKA Genetic Fuzzing) have been proven to be one of the most effective ways to find memory corruptions. One of the best fuzzers out there is AFL which is created by lcamtuf (MichaĆ Zalewski). AFL can fuzz both open source applications using instrumentation which is very effective
