使用afl来fuzz libtiff
使用afl来fuzz libtiff
用户1423082
发布于 2024-12-31 20:12:14
发布于 2024-12-31 20:12:14
代码可运行
运行总次数:0
代码可运行
源码下载:
http://download.osgeo.org/libtiff/
编译:
export CC=afl-clang-fast
export CXX=afl-clang-fast++
./configure --disable-shared
make我们确定目标是fuzz tiff2pdf
下载测试用例
wget https://lcamtuf.coredump.cx/afl/demo/afl_testcases.tgz我们使用afl_testcases/tiff/full/images里面的即可
最小化测试用例
afl-cmin -i testcase_full -o testcase_cmin ./tools/tiff2pdf @@ /dev/null最终6000多个减少到800个
corpus minimization tool for afl-fuzz by <lcamtuf@google.com>
[*] Testing the target binary...
[+] OK, 101 tuples recorded.
[*] Obtaining traces for input files in 'testcase_full'...
Processing file 6399/6399...
[*] Sorting trace sets (this may take a while)...
[+] Found 12057 unique tuples across 6399 files.
[*] Finding best candidates for each tuple...
Processing file 6399/6399...
[*] Sorting candidate list (be patient)...
[*] Processing candidates and writing output files...
Processing tuple 12057/12057...
[+] Narrowed down to 817 files, saved in 'testcase_cmin'.开fuzz
afl-fuzz -i testcase_cmin/ -o afl_output/ tools/tiff2pdf @@ /dev/null本文参与 腾讯云自媒体同步曝光计划,分享自作者个人站点/博客。
原始发表:2020-08-25,如有侵权请联系 cloudcommunity@tencent.com 删除
评论
登录后参与评论
推荐阅读
腾讯云开发者
