Improved OSX support (#1005)

Co-authored-by: Your Name <you@example.com>
author: WorksButNotTested <62701594+WorksButNotTested@users.noreply.github.com> 2021-07-06 08:09:43 +0100
committer: GitHub <noreply@github.com> 2021-07-06 09:09:43 +0200
commit: 2a433f90c456b19cf9aa39384540f618c6eeb1a8 (patch)
tree: d5c44a780cd74a7b1931a7bd17ac8ad4bc0d65e4 /frida_mode/Scripting.md
parent: bf9a15541888ac8836a70b4d01c2c9e7bd940051 (diff)
download: afl++-2a433f90c456b19cf9aa39384540f618c6eeb1a8.tar.gz
1 files changed, 13 insertions, 0 deletions
diff --git a/frida_mode/Scripting.md b/frida_mode/Scripting.md
index 4c6fe6b2..5467db99 100644
--- a/frida_mode/Scripting.md
+++ b/frida_mode/Scripting.md
@@ -605,6 +605,19 @@ difficult to diagnose. The code above only prints the instructions when running
 in the parent process (the one provided by `Process.id` when the JS script is
 executed).
 
+# OSX
+Note that the JavaScript debug symbol api for OSX makes use of the
+`CoreSymbolication` APIs and as such the `CoreFoundation` module must be loaded
+into the target to make use of it. This can be done by setting:
+
+```
+AFL_PRELOAD=/System/Library/Frameworks/CoreFoundation.framework/CoreFoundation
+```
+
+It should be noted that `CoreSymbolication` API may take a while to initialize
+and build its caches. For this reason, it may be nescessary to also increase the
+value of the `-t` flag passed to `afl-fuzz`.
+
 # API
 ```js
 class Afl {
author	WorksButNotTested <62701594+WorksButNotTested@users.noreply.github.com>	2021-07-06 08:09:43 +0100
committer	GitHub <noreply@github.com>	2021-07-06 09:09:43 +0200
commit	2a433f90c456b19cf9aa39384540f618c6eeb1a8 (patch)
tree	d5c44a780cd74a7b1931a7bd17ac8ad4bc0d65e4 /frida_mode/Scripting.md
parent	bf9a15541888ac8836a70b4d01c2c9e7bd940051 (diff)
download	afl++-2a433f90c456b19cf9aa39384540f618c6eeb1a8.tar.gz