diff options
| author | van Hauser <vh@thc.org> | 2018-03-16 12:20:58 +0100 |
|---|---|---|
| committer | van Hauser <vh@thc.org> | 2018-03-16 12:20:58 +0100 |
| commit | 91ed32b7e29565cdb92fa3ebb395066da939be47 (patch) | |
| tree | b96c327e7ad6d85ea5e2f58fd2ade3f68b8e556e | |
| parent | ec63e8c3dbea7e18bf3c2dd18d1216c5906f704e (diff) | |
| download | afl-dyninst-91ed32b7e29565cdb92fa3ebb395066da939be47.tar.gz | |
final dynamorio changes
| -rw-r--r-- | CHANGES | 4 | ||||
| -rw-r--r-- | Makefile | 2 | ||||
| -rw-r--r-- | README.txt | 6 | ||||
| -rwxr-xr-x | afl-fuzz-dyninst.sh (renamed from afl-fuzz.sh) | 0 |
4 files changed, 7 insertions, 5 deletions
diff --git a/CHANGES b/CHANGES index 6804f76..82b7d74 100644 --- a/CHANGES +++ b/CHANGES @@ -2,8 +2,10 @@ Changelog ========= https://github.com/vanhauser-thc/afl-dyninst + - renamed afl-fuzz.sh to afl-fuzz-dyninst.sh and make install + installs now the scripts - added -E switch to force a program exit at specific addresses - - added -D switch which does not basic block instrumentation + - added -D switch which does not do basic block instrumentation - the -S switch can now be specified several times - checks the dyninst version and comments on the -f option - added -S switch to skip instrumenting a specific function diff --git a/Makefile b/Makefile index 25ef545..f48af58 100644 --- a/Makefile +++ b/Makefile @@ -40,5 +40,5 @@ clean: install: all install -d $(INSTALL_ROOT)/bin install -d $(INSTALL_ROOT)/lib - install afl-dyninst $(INSTALL_ROOT)/bin + install afl-dyninst afl-dyninst.sh afl-fuzz-dyninst.sh $(INSTALL_ROOT)/bin install libAflDyninst.so $(INSTALL_ROOT)/lib diff --git a/README.txt b/README.txt index d9cb3f0..12ebb2c 100644 --- a/README.txt +++ b/README.txt @@ -69,7 +69,7 @@ This options is mainly to hunt down bugs in dyninst. Switch -D installs the afl fork server and forced exit functions but no basic block instrumentation. That would serve no purpose - unless there is -another interesting tool coming up ... +another interesting tool coming up ... :) Compiling: @@ -109,7 +109,7 @@ Since AFL checks if the binary has been instrumented by afl-gcc,AFL_SKIP_BIN_CHE variable needs to be set. No modifications to AFL it self is needed. $ export AFL_SKIP_BIN_CHECK=1 Then, AFL can be run as usual: -$ afl-fuzz -i testcases/archives/common/gzip/ -o test_gzip -- ./gzip_ins -d -c +$ afl-fuzz -i testcases/archives/common/gzip/ -o test_gzip -- ./gzip_ins -d -c -Note that there are the helper scripts afl-fuzz.sh and afl-dyninst.sh for you which set the +Note that there are the helper scripts afl-fuzz-dyninst.sh and afl-dyninst.sh for you which set the required environment variables for you. diff --git a/afl-fuzz.sh b/afl-fuzz-dyninst.sh index bb10a95..bb10a95 100755 --- a/afl-fuzz.sh +++ b/afl-fuzz-dyninst.sh |