2017-07-30 06:52:56 +02:00
|
|
|
afl (security-oriented fuzzer)
|
|
|
|
|
|
|
|
American fuzzy lop is a security-oriented fuzzer that employs a
|
|
|
|
novel type of compile-time instrumentation and genetic algorithms to
|
|
|
|
automatically discover clean, interesting test cases that trigger new
|
|
|
|
internal states in the targeted binary. This substantially improves the
|
|
|
|
functional coverage for the fuzzed code. The compact synthesized corpora
|
|
|
|
produced by the tool are also useful for seeding other, more labor-
|
|
|
|
or resource-intensive testing regimes down the road.
|
|
|
|
|
|
|
|
To use afl with binary-only code (no source available), a custom qemu
|
2020-02-17 19:00:46 +01:00
|
|
|
wrapper is used (afl-qemu-trace). This does NOT require a system-wide
|
|
|
|
installation of qemu, but it does require the source to qemu. To build
|
|
|
|
qemu support, download the qemu source from:
|
2017-07-30 06:52:56 +02:00
|
|
|
|
2020-02-17 19:00:46 +01:00
|
|
|
https://download.qemu-project.org/qemu-2.10.0.tar.xz
|
2017-07-30 06:52:56 +02:00
|
|
|
|
|
|
|
Save the file in the same directory as the afl.SlackBuild script.
|
|
|
|
|
|
|
|
If binary-only support is not needed, don't download the qemu source. This
|
|
|
|
will speed up the build quite a bit.
|