American fuzzy lop is a security-oriented fuzzer

Edit Package afl
http://lcamtuf.coredump.cx/afl/

American fuzzy lop is a security-oriented fuzzer that employs a novel type of compile-time instrumentation and genetic algorithms to automatically discover clean, interesting test cases that trigger new internal states in the targeted binary. This substantially improves the functional coverage for the fuzzed code. The compact synthesized corpora produced by the tool are also useful for seeding other, more labor- or resource-intensive testing regimes down the road.

Compared to other instrumented fuzzers, afl-fuzz is designed to be practical: it has modest performance overhead, uses a variety of highly effective fuzzing strategies and effort minimization tricks, requires essentially no configuration, and seamlessly handles complex, real-world use cases - say, common image parsing or file compression libraries.

Refresh
Refresh
Source Files
Filename Size Changed
afl-3.0c-fix-paths.patch 0000000972 972 Bytes
afl-rpmlintrc 0000000725 725 Bytes
afl.changes 0000112945 110 KB
afl.spec 0000003775 3.69 KB
v4.09c.tar.gz 0002937761 2.8 MB
Revision 80 (latest revision is 83)
Ana Guerrero's avatar Ana Guerrero (anag+factory) accepted request 1133737 from Marcus Meissner's avatar Marcus Meissner (msmeissn) (revision 80)
- updated to 4.09c
  - afl-fuzz:
    - fixed the new mutation implementation for two bugs
    - added `AFL_FINAL_SYNC` which forces a final fuzzer sync (also for `-F`)
      before terminating.
    - added AFL_IGNORE_SEED_PROBLEMS to skip over seeds that time out instead
      of exiting with an error message
    - allow -S/-M naming up to 50 characters (from 24)
    - CMPLOG:
      - added scale support (-l S)
      - skip unhelpful insertions (u8)
    - added --version and --help command line parameters
    - fixed endless loop when reading malformed dictionaries
    - new custom mutator function: post_run - thanks to yangzao!
  - afl-whatsup:
    - detect instanced that are starting up and show them as such as not dead
    - now also shows coverage reached
    - option -m shows only very relevant stats
    - option -n will not use color in the output
  - instrumentation:
    - fix for a few string compare transform functions for LAF
    - we are instrumenting __cxx internal functions again. this might break
      a few targets, please report if so.
  - frida_mode:
    - fixes support for large map offsets
  - support for AFL_FUZZER_LOOPCOUNT for afl.rs and LLVMFuzzerTestOneInput
  - afl-cmin/afl-cmin.bash: prevent unneeded file errors
  - added new tool afl-addseeds that adds new seeds to a running campaign
  - added benchmark/benchmark.py if you want to see how good your fuzzing
    speed is in comparison to other setups. (forwarded request 1133736 from msmeissn)
Comments 0
openSUSE Build Service is sponsored by