开源软件名称(OpenSource Name):nccgroup/TriforceLinuxSyscallFuzzer开源软件地址(OpenSource Url):https://github.com/nccgroup/TriforceLinuxSyscallFuzzer开源编程语言(OpenSource Language):C 86.2%开源软件介绍(OpenSource Introduction):TriforceLinuxSyscallFuzzer
New: For those looking to play with TriforceAFL and TLSF, Richard Johnson created a Dockerfile which installs both (and even builds a Linux kernel for you). It's available here https://hub.docker.com/r/moflow/afl-triforce/tags/. This is a collection of files used to perform system call
fuzzing of Linux x86_64 kernels using AFL and QEMU. To use
it you will need TriforceAFL from https://github.com/nccgroup/TriforceAFL
and a kernel image to fuzz. Scripts assume that TriforceAFL is
found in BuildingTo build:
FuzzingTo run, first install a kernel into
Note that the Also Note that this only creates a small set of example inputs. To test
a large number of important system calls, you will probably want to
generate one example of each system call, or at least one example
for every "shape" of system call. These should be placed in ReproducingTo reproduce test cases (such as crashes) run:
You can also run the driver out of the emulated environment
with the
It is sometimes useful to be able to boot the kernel and interactively run tests. To do so, edit the rootTemplate files as you see fit (for example, to add more test tools to the root filesystem), then run:
Other commands other than the shell can be invoked by specifying
them as command line arguments to DebuggingDebugging is easiest with a kernel built with debugging symbols enabled.
Use
You can attach the debugger after Note that Linux sources are compiled with optimization turned
on by default. This can make debugging confusing and difficult.
You can disable optimization on a file-by-file
basis by editing the Linux make file for the subdirectory a file is
in and adding UtilityThe
BugsNote: When fuzzing a Linux 2.* kernel you will need to enable
the CPU timer. When the timer is not enabled panic and logging
detection do not seem to operate properly and panics result
in hangs. To enable the timer, call |
2023-10-27
2022-08-15
2022-08-17
2022-09-23
2022-08-13
请发表评论