-
Notifications
You must be signed in to change notification settings - Fork 12
/
elf
73 lines (66 loc) · 2.51 KB
/
elf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
[bfbtester]
comment = Dangerous because it executes binaries
apt = bfbtester
files = ./debian/*/bin/* ./debian/*/usr/bin/* ./debian/*/sbin/* ./debian/*/usr/sbin/* ./debian/*/usr/games/*
types = application/x-executable
command = bfbtester -x{njobs} -a -t {files}
flags = dangerous
[lockdep]
flags = dangerous manual
apt = lockdep
files = ./debian/*/bin/* ./debian/*/usr/bin/* ./debian/*/sbin/* ./debian/*/usr/sbin/* ./debian/*/usr/games/*
types = application/x-executable
comment =
Please test any installed pthread-using programs using lockdep
Dangerous because it executes binaries
command = lockdep {files}
[zzuf]
flags = dangerous manual fuzz
apt = zzuf
files =
./debian/*/bin/* ./debian/*/usr/bin/* ./debian/*/sbin/* ./debian/*/usr/sbin/* ./debian/*/usr/games/*
*.c *.cc *.cxx *.cpp
comment =
Please fuzz test any installed programs using zzuf
Dangerous because it executes binaries
command = zzuf command args
[afl]
flags = dangerous manual fuzz
apt = afl
files =
./debian/*/bin/* ./debian/*/usr/bin/* ./debian/*/sbin/* ./debian/*/usr/sbin/* ./debian/*/usr/games/*
*.c *.cc *.cxx *.cpp
comment =
Please fuzz test any installed programs using American fuzzy lop
Dangerous because it executes binaries
command = CC=afl-gcc CXX=afl-g++ ./configure ; make clean all ; afl-fuzz -i testcases -o findings command -arg @@
[hardening-check]
apt = hardening-includes
files = ./debian/*/bin/* ./debian/*/usr/bin/* ./debian/*/sbin/* ./debian/*/usr/sbin/* ./debian/*/usr/games/*
./debian/*/lib/lib*.so* ./debian/*/lib/*/lib*.so* ./debian/*/usr/lib/lib*.so* ./debian/*/usr/lib/*/lib*.so*
flags = perl-bug-588017
command = hardening-check --quiet {files}
[leaktracer]
flags = dangerous modify manual
comment =
Please check any installed C++ programs for memory leaks
Please note that it creates/updates the leak.out file
Dangerous because it executes binaries
files =
./debian/*/bin/* ./debian/*/usr/bin/* ./debian/*/sbin/* ./debian/*/usr/sbin/* ./debian/*/usr/games/*
*.cc *.cxx *.cpp
types = application/x-executable text/x-c++
command = LeakCheck ./command && leak-analyze ./command ; rm -f leak.out
# TODO: abigail-tools
# TODO: icheck
# TODO: abicheck
# TODO: valgrind
# TODO: electric-fence
# TODO: tmperamental (dangerous)
# TODO: https://www.gnu.org/software/libc/manual/html_node/Heap-Consistency-Checking.html
# TODO: http://udrepper.livejournal.com/11429.html
# TODO: MALLOC_CHECK_=2 MALLOC_PERTURB_=$(($RANDOM % 255 + 1))
# TODO: fuzz
# TODO: https://github.com/vmware/chap
# TODO: http://search.cpan.org/~gnb/Devel-Plumber/
# vim:ft=dosini