Skip to content
/ aflpp-dipri Public

A extended AFL++ with distance-based seed prioritization, i.e., DiPri

License

Apache-2.0 license
2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

QRXqrx/aflpp-dipri

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

179 Commits
.github
.github
 
 
.idea
.idea
 
 
custom_mutators
custom_mutators
 
 
dictionaries
dictionaries
 
 
docs
docs
 
 
fig
fig
 
 
frida_mode
frida_mode
 
 
include
include
 
 
instrumentation
instrumentation
 
 
nyx_mode
nyx_mode
 
 
qemu_mode
qemu_mode
 
 
src
src
 
 
test
test
 
 
testcases
testcases
 
 
toys
toys
 
 
unicorn_mode
unicorn_mode
 
 
utils
utils
 
 
.clang-format
.clang-format
 
 
.custom-format.py
.custom-format.py
 
 
.dockerignore
.dockerignore
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
Android.bp
Android.bp
 
 
CITATION.cff
CITATION.cff
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
Changelog.md
Changelog.md
 
 
Dockerfile
Dockerfile
 
 
GNUmakefile
GNUmakefile
 
 
GNUmakefile.gcc_plugin
GNUmakefile.gcc_plugin
 
 
GNUmakefile.llvm
GNUmakefile.llvm
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.aflpp.md
README.aflpp.md
 
 
README.md
README.md
 
 
TODO.md
TODO.md
 
 
afl-cmin
afl-cmin
 
 
afl-cmin.bash
afl-cmin.bash
 
 
afl-persistent-config
afl-persistent-config
 
 
afl-plot
afl-plot
 
 
afl-system-config
afl-system-config
 
 
afl-whatsup
afl-whatsup
 
 
afl-wine-trace
afl-wine-trace
 
 
build.sh
build.sh
 
 
config.h
config.h
 
 
dynamic_list.txt
dynamic_list.txt
 
 
test-instr.c
test-instr.c
 
 
types.h
types.h
 
 

Repository files navigation

AFL++-DiPri: AFL++ with Distance-based Seed Prioritization.

This is the C/C++ implementation of our paper: DiPri: Distance-based Seed Prioritization for Greybox Fuzzing. You can read our FUZZING'23 paper or TOSEM paper (under reviewed at the time this document is updated) to learn more about the basic hypothesis and approach designs of DiPri.. This prototype is essentially an extension of the famous community-driven fuzzer AFL++ (version 4.06). To learn more about AFL++, please refer to their GitHub repo or read AFL++ readme.

Approach and Configurations

overview

The above picture shows the high-level workflow of DiPri. Specifically, DiPri splits seed prioritization into two stages, i.e., seed evaluation and seed reordering. By default, AFL++-DiPri adopts a distance-based strategy to evaluate and assign priority scores for seeds. The distance-based strategy could by controlled through different prioritization modes and distance measures. In addition to the proposed distance-based evaluation metric, AFL++-DiPri supports other general evaluation metrics, such as coverage (bitmap_size), the size of input, the execution time, etc. The above picture display the configurations supported by AFL++-DiPri, which are essentially a group of environment variables. Note that the default configurations is tagged with *.

configs

Prioritization modes. DiPri provides three prioritization modes, namely VANILLA, PERIODICAL, and ADAPTIVE. AFL++-DiPri will conduct prioritization at different timings under different modes. The features of the modes are as follows:

  • VANILLA mode: prioritizes every time the seed queue is updated.
  • PERIODICAL mode: prioritizes periodically with a preset duration.
  • ADAPTIVE mode: prioritizes when all last prioritized seeds are picked for input generation.

Installing and Running AFL++-DiPri

AFL++-DiPri requires no other dependencies than those required by AFL++. You can refer to AFL++ install document to preinstall all the dependencies. After satisfying the prerequisites, you can use the following instructions to install AFL++-DiPri:

git clone https://github.com/QRXqrx/aflpp-dipri.git
cd aflpp-dipri
make source-only

Though AFL++-DiPri use VH config by default, the AH is the best among all the six configurations according to our evaluation. Say if you want to run AFL++-DiPri under AE config, you may use the following command:

DIPRI_MODE=A DIPRI_MEASURE=E <path-to-dipri>/afl-fuzz -i <in_dir> -o <out_dir> -- <target_args>

About

A extended AFL++ with distance-based seed prioritization, i.e., DiPri

Resources

Readme

License

Apache-2.0 license
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Sponsor this project

  •  
Learn more about GitHub Sponsors

Packages

No packages published

Languages