Is there a way to run traditional AFL with afl-rb? #11
Comments
|
Hmmm there is no easy way to run standard AFL. What do you mean by "time penalty incurred by the branching code"? Do you mean keeping the count of how many inputs have hit each branch? |
|
Sorry - I meant the time penalty incurred by the inserted branch masking code (you mention that the -b option will incur unecessary slowdown, which is what I want for a "fair" comparison). I started digging around your code - if I add an extra command line argument, holding a bool, and switch "off" the part of your code that decrements your variable "vanilla_afl," that should work, right? In addition to the -b option? |
|
Yes, removing the vanilla_afl decrement should work! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I'm trying to benchmark some fuzzing runs with afl-rb, and traditional AFL (with the time penalty incurred by the branching code). As such, I was wondering if there was a way to get standard AFL behavior with AFL-rb.
It seems to me the -b option just turns off the masking... is there a feature that turns off the seed selection from the queue? If not, where might I add that code?
Thanks!
The text was updated successfully, but these errors were encountered: