Skip to content

ikhwan12/afl-confuzz

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
aflnew
aflnew
 
 
exploitable
exploitable
 
 
klee-uclibc
klee-uclibc
 
 
libjpeg_report
libjpeg_report
 
 
minisat
minisat
 
 
stp
stp
 
 
tcp_exp
tcp_exp
 
 
tool
tool
 
 
whole-program-llvm
whole-program-llvm
 
 
zcov
zcov
 
 
README.md
README.md
 
 
concolic.sh
concolic.sh
 
 
example.c
example.c
 
 
fuzzer.sh
fuzzer.sh
 
 
start
start
 
 

Repository files navigation

Confuzz - Concolic Fuzzing

HowTo ...

Docker installation

docker push kira00/confuzz_run:latest
docker run -it --name <container_name> kira00/confuzz:latest /bin/bash

Start and Preparation

docker start <container_name>
docker cp example.c <container_name>:/home/klee/klee_build/afcon/tools/source
docker exec -it <container_name> /bin/bash
cd /home/klee/klee_build/afcon/tools
make clean
cd /source
make start
cd ../
../weapon/start
cd source/
./pick example
cd ../

Run Concolic Engine (Run at least 30 minutes)

cd concolic/
./concolic.sh
CTRL + C (wait until dumping all remaining states is done)

Run TCP (Test Case Prioritization)

cd ../
python2.7 switch_checking

Run Fuzzing Engine (Run for 12 ~ 24 hours)

cd fuzzer
./fuzzer.sh
Stop it (CTRL + C)

Generate Analysis and Coverage Report

python2.7 crash_analyze fuzzer/out
python2.7 cov_analyze example fuzzer/out
./generate.sh

About

Concolic Fuzzing

Resources

Readme
Activity

Stars

5 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages