Skip to content
/ AFLNet-modified-version- Public
forked from aflnet/aflnet

Minor edit on AFLNet fuzzer that now stores the messages leading to each state in the outputted state model.

License

Apache-2.0 license
0 stars 194 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

cristiandaniele/AFLNet-modified-version-

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

94 Commits
dictionaries
dictionaries
 
 
docs
docs
 
 
experimental
experimental
 
 
images
images
 
 
libdislocator
libdislocator
 
 
libtokencap
libtokencap
 
 
llvm_mode
llvm_mode
 
 
qemu_mode
qemu_mode
 
 
testcases
testcases
 
 
tutorials
tutorials
 
 
.gitignore
.gitignore
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README-AFL.md
README-AFL.md
 
 
README.md
README.md
 
 
afl-analyze.c
afl-analyze.c
 
 
afl-as.c
afl-as.c
 
 
afl-as.h
afl-as.h
 
 
afl-cmin
afl-cmin
 
 
afl-fuzz.c
afl-fuzz.c
 
 
afl-gcc.c
afl-gcc.c
 
 
afl-gotcpu.c
afl-gotcpu.c
 
 
afl-plot
afl-plot
 
 
afl-replay.c
afl-replay.c
 
 
afl-showmap.c
afl-showmap.c
 
 
afl-tmin.c
afl-tmin.c
 
 
afl-whatsup
afl-whatsup
 
 
aflnet-replay.c
aflnet-replay.c
 
 
aflnet.c
aflnet.c
 
 
aflnet.h
aflnet.h
 
 
alloc-inl.h
alloc-inl.h
 
 
android-ashmem.h
android-ashmem.h
 
 
config.h
config.h
 
 
debug.h
debug.h
 
 
hash.h
hash.h
 
 
khash.h
khash.h
 
 
klist.h
klist.h
 
 
test-instr.c
test-instr.c
 
 
test-libfuzzer-target.c
test-libfuzzer-target.c
 
 
types.h
types.h
 
 

Repository files navigation

New AFLNet version

This repo is a fork of the stateful Fuzzer AFLNet, developed to cope efficiently with stateful systems.

Upgrades

Outputs a complete state model

This version of AFLNet allows the user to export the state model of the system by integrating the labels in the edges.

The old graph:

image info

The new graph:

image info

Allows testing the fuzzer on custom code

AFLNet only supports known protocols. This version implements a TEST version that allows processing the requests and responses of custom software.

For example:

./afl-fuzz -d -i ./input -o output -N tcp://127.0.0.1/port -P TEST -D 10000 -q 3 -s 3 -E -R ./my_program

allows to read from the input folder the messages to send to my_program and interprets the messages received from the program as response codes

Important Notes

The extension saves the labels into the "key" field. If you want to show the label, you need to change "key" to "label". Also, .dot files don't like spaces (" ") at the end of a label, so try to get rid of them.

Licences

AFLNet is licensed under Apache License, Version 2.0.

AFLNet is an extension of American Fuzzy Lop written and maintained by Michał Zalewski <[email protected]>. For details on American Fuzzy Lop, we refer to README-AFL.md.

About

Minor edit on AFLNet fuzzer that now stores the messages leading to each state in the outputted state model.

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

0 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C 89.9%
  • Shell 5.7%
  • Makefile 2.2%
  • Dockerfile 0.9%
  • C++ 0.8%
  • HTML 0.5%