-
Notifications
You must be signed in to change notification settings - Fork 66
/
Copy pathmanul_win_gdiplus.config
111 lines (89 loc) · 4.07 KB
/
manul_win_gdiplus.config
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
# Manul - configuration file
# -------------------------------------
# Maksim Shudrak <mshudrak@salesforce.com> <mxmssh@gmail.com>
#
# Copyright 2019 Salesforce.com, inc. All rights reserved.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at:
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
# Manul config file
# Format: <option_name> = <value>
# -----------------
# absolute path to dictionary with usefull tokens
#dict = dictionaries/test.dict
# Mutator weights (should be 10 in total). Use my_mutator:x,my_mutator_2:x to define and use your own
# custom mutator (should be 10 in total). Specify 0 to disable certain mutators. Weights basically are
# used to tell manul how many mutations per 10 executions should be performed by certain fuzzer.
# example afl:5,radamsa:2,my_awesome_fuzzer:3
# afl will be used to mutate 5 out of 10 cases, 2 out of 10 for radamsa and 3 out of 10 for my_awesome_fuzzer
# Your custom mutator's main file should be located in the same folder as manul.py.
# Two default mutators should always be defined (afl, radamsa)
mutator_weights=afl:10,radamsa:0
#mutator_weights=afl:6,radamsa:0,example_mutator:4
# Use determenistic seed for test cases generation (only radamsa option).
determenistic_seed = False
# Print fuzzing summary per thread instead of total summary
print_per_thread = False
# disable volatile bytes suppression algorithm
#disable_volatile_bytes = True
# Choose DBI framework to provide coverage back to Manul ("dynamorio" or "pin"). Example dbi = dynamorio
dbi = dynamorio
# If dbi param is not None the path to dbi engine launcher and dbi client should be specified.
dbi_root = E:\DynamoRIO-Windows-7.91.18299-0\bin32\drrun.exe
dbi_client_root = C:\Users\max\Desktop\manul\manul\win\dbi_32\binafl.dll
dbi_client_libs = GdiPlus.dll,gdi32.dll
# Select persistence mode: 0 - no persistence, 1 - standard persistence (function wrapping), 2 - inapp persistence
dbi_persistence_mode = 1
# Module name where the target function is implemented
dbi_target_module = test_gdiplus.exe
# Function name
#dbi_target_method = open_file
# Function offset in 0xFFFFFF format
dbi_target_offset = 0x1680
# Number of fuzz iterations to run in-memory before the whole program restarts
dbi_fuzz_iterations = 5000
# Instrument coverage only from a thread that executed the target function
#dbi_thread_coverage = False
# Timeout for target binary
timeout = 10
# wait time before actually start sending test cases in the target
init_wait = 1
# Stop manul after n seconds of running (specify 0 for infinite run)
#stop_after_nseconds = 0
# net_config_master and net_config_slave below are used to share manul instances over network.
# Path to network configuration file with a list of IP:port slave addresses. Specified for master instance.
net_config_master = None
# IP and port to listen for connections from master (e.g. net_config_slave = 0.0.0.0:1337)
net_config_slave = None
# Run in debug mode, print details in console
debug = False
# Print Manul ASCII logo at the beginning
manul_logo = False
# Disable stats saving in the manul working dir
#no_stats = True
# Save debug messages to log files (one per thread)
logging_enable = False
# Bitmap sync frequency (5000 recommended for DBI mode)
sync_freq = 10000
# Custom path to save input file
#custom_path = test_path
# Command line fuzzing (experimental)
#cmd_fuzzing = True
# define signals to be ignored by manul
user_signals = 6
# Network fuzzing. Target IP address
#target_ip_port = 127.0.0.1:7715
# tcp | udp
#target_protocol = tcp
# wait time between test cases
#net_sleep_between_cases = 0.0
# Enable AFL's forkserver fuzzing mode (only available on Linux, experimental)
#forkserver_on = True