; install z3 and system deps
$ ./setup.sh
; install using virtual env
$ virtualenv venv
$ source venv/bin/activate
$ python setup.py install
; require to set the following environment variables
; AFL_ROOT: afl directory (http://lcamtuf.coredump.cx/afl/)
; INPUT: input seed files
; OUTPUT: output directory
; CMDLINE: command line for a testing program
; run AFL master
$ $(AFL_ROOT)/afl-fuzz -M afl-master -i $(INPUT) -o $(OUTPUT) -- $(CMDLINE)
; run AFL slave
$ $(AFL_ROOT)/afl-fuzz -S afl-slave -i $(INPUT) -o $(OUTPUT) -- $(CMDLINE)
; run QSYM
$ bin/run_afl_qsym.py -a afl-slave -o $(OUTPUT) -- $(CMDLINE)
$ cd tests
$ python build.py
$ python -m pytest -n $(nproc)
QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
@inproceedings{yun:qsym,
title = {{QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing (to appear)}},
author = {Insu Yun and Sangho Lee and Meng Xu and Yeongjin Jang and Taesoo Kim},
booktitle = {Proceedings of the 27th USENIX Security Symposium (Security)},
month = aug,
year = 2018,
address = {Baltimore, MD},
}