Using AFL++
A tool to fuzz applications, find code coverage, and discover crashes in the application
Last updated
A tool to fuzz applications, find code coverage, and discover crashes in the application
Last updated
git clone https://github.com/AFLplusplus/AFLplusplus.git
make distrib
sudo make install
Make the application using afl-gcc. Mandatory! This removes instrumentation on binary and lets AFL add additional code needed to understand inputs required.
afl-gcc giftcardreader.c -o giftcardreader
afl-fuzz -i aflfuzz/inputs -o aflfuzz/outputs -- ./giftcardreader 1 @@
Now I put all the testcases that I need to supply to the application in aflfuzz/inputs directory and create an empty directory aflfuzz/outputs in which AFL shall put its output testcases.
Finally, in the aflfuzz/outputs directory we'll have made queue/ which would have all the different crashes and hangs file that the application would crash on. We can manually see code coverage in this file and then see what inputs causes these crashes, and fix them!
