oss-sec mailing list archives

Re: Re: Fuzzing objdump (PR 17512) and readelf (PR 17531)

From: Michal Zalewski <lcamtuf () coredump cx>
Date: Fri, 7 Nov 2014 08:54:21 -0800

I am currently playing a lot with this. afl is in a somewhat
experimental state and you'll run into more problems trying to get it
running, but if it runs it is much more convenient than zzuf.


The current versions should be pretty stable, but if you bump into any
problems, please just poke me!=)

Afl is kind of cool for tools like binutils or fileutils because it
can synthesize many formats or format variations on its own, e.g.:

http://lcamtuf.blogspot.com/2014/11/pulling-jpegs-out-of-thin-air.html

But yeah, there's plenty of low-hanging fruit in libbfd right now, so
non-instrumented fuzzing will get you pretty damn far, too.

/mz

Current thread:

Fuzzing objdump (PR 17512) and readelf (PR 17531) Alexander Cherepanov (Nov 06)
- Re: Fuzzing objdump (PR 17512) and readelf (PR 17531) Yury Gribov (Nov 07)
  - Re: Re: Fuzzing objdump (PR 17512) and readelf (PR 17531) Hanno Böck (Nov 07)
    - Re: Re: Fuzzing objdump (PR 17512) and readelf (PR 17531) Yury Gribov (Nov 07)
    - Re: Re: Fuzzing objdump (PR 17512) and readelf (PR 17531) Alexander Cherepanov (Nov 07)
    - Re: Re: Fuzzing objdump (PR 17512) and readelf (PR 17531) Alexander Cherepanov (Nov 07)
    - Re: Re: Fuzzing objdump (PR 17512) and readelf (PR 17531) Nicholas Clifton (Nov 11)
    - Re: Re: Fuzzing objdump (PR 17512) and readelf (PR 17531) Michal Zalewski (Nov 07)
  - Re: Re: Fuzzing objdump (PR 17512) and readelf (PR 17531) Robert Święcki (Nov 07)
    - Re: Re: Fuzzing objdump (PR 17512) and readelf (PR 17531) Alexander Cherepanov (Nov 16)
    - Re: Re: Fuzzing objdump (PR 17512) and readelf (PR 17531) Robert Święcki (Nov 16)