AFL-Tracing

AFL-Tracing is the extension module of AFL that can work together with Symbolic Execution

Installation

Install some tools

$ sudo apt install python virtualenv git python-dev

Activate the virtual environment

$ mkdir afl-tracing
$ cd ~/afl-tracing
$ virtualenv venv
$ source venv/bin/activate

Install AFL

$ git clone https://github.com/mirrorer/afl
$ cd afl
$ make && sudo make install

Install Angr & Driller modules

$ pip install git+https://github.com/angr/cle
$ pip install git+https://github.com/angr/angr
$ pip install git+https://github.com/angr/tracer
$ pip install git+https://github.com/shellphish/driller

Running the Example Program

Usage : python run.py [binary] [fuzzer_input_dir] [fuzzer_output_dir]

$ gcc foo.c -o foo
$ mkdir test
$ echo 'start' > test/input/seed
$ python run.py ./foo test/input test/output

License

MIT

About

Combine AFL with Tracer

Languages

Language:C 87.7%Language:C++ 5.2%Language:Assembly 1.6%Language:Python 1.5%Language:Objective-C 1.2%Language:Forth 0.8%Language:Shell 0.6%Language:Makefile 0.6%Language:Perl 0.4%Language:Haxe 0.2%Language:PHP 0.0%Language:Yacc 0.0%Language:M4 0.0%Language:XSLT 0.0%Language:Lex 0.0%Language:HTML 0.0%Language:NSIS 0.0%Language:GDB 0.0%Language:Batchfile 0.0%Language:sed 0.0%Language:Tcl 0.0%Language:CSS 0.0%Language:QMake 0.0%Language:F# 0.0%Language:GLSL 0.0%Language:Awk 0.0%Language:PLpgSQL 0.0%Language:Emacs Lisp 0.0%Language:JavaScript 0.0%