Skip to content
/ CarpetFuzz-fuzzer Public

CarpetFuzz's fuzzer component. Belongs to CarpetFuzz main repo.

License

Apache-2.0 license
13 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

waugustus/CarpetFuzz-fuzzer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
coresight_mode
coresight_mode
 
 
custom_mutators
custom_mutators
 
 
dictionaries
dictionaries
 
 
docs
docs
 
 
frida_mode
frida_mode
 
 
include
include
 
 
instrumentation
instrumentation
 
 
nyx_mode
nyx_mode
 
 
qemu_mode
qemu_mode
 
 
src
src
 
 
test
test
 
 
testcases
testcases
 
 
unicorn_mode
unicorn_mode
 
 
utils
utils
 
 
.clang-format
.clang-format
 
 
.custom-format.py
.custom-format.py
 
 
.dockerignore
.dockerignore
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
Android.bp
Android.bp
 
 
CITATION.cff
CITATION.cff
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
Changelog.md
Changelog.md
 
 
Dockerfile
Dockerfile
 
 
GNUmakefile
GNUmakefile
 
 
GNUmakefile.gcc_plugin
GNUmakefile.gcc_plugin
 
 
GNUmakefile.llvm
GNUmakefile.llvm
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README-AFLplusplus.md
README-AFLplusplus.md
 
 
README.md
README.md
 
 
TODO.md
TODO.md
 
 
afl-cmin
afl-cmin
 
 
afl-cmin.bash
afl-cmin.bash
 
 
afl-persistent-config
afl-persistent-config
 
 
afl-plot
afl-plot
 
 
afl-system-config
afl-system-config
 
 
afl-whatsup
afl-whatsup
 
 
afl-wine-trace
afl-wine-trace
 
 
config.h
config.h
 
 
dynamic_list.txt
dynamic_list.txt
 
 
test-instr.c
test-instr.c
 
 
types.h
types.h
 
 

Repository files navigation

CarpetFuzz-fuzzer

This repo is CarpetFuzz's fuzzer component, which is based on the AFLplusplus repo (commit 96b774261172a2259ab98cc529eba3d7212375cb).

Description

With this fuzzer, CarpetFuzz can fuzz each program with all the prioritized pruned option combinations. Specifically, this fuzzer will instrument the target program to allow it to read options from a file and let the fuzzer modify the file on the fly to switch the combinations in use. At the beginning of fuzzing, it will use all the given combinations to mutate the seed files and record the corresponding combination when generating a new test case. Then it use the corresponding combination to mutate each test case in the queue.

All changes we made can be searched with the pattern,

// CarpetFuzz modified
***
// CarpetFuzz end

AFL Version

We also provide a version of CarpetFuzz based on AFL (commit 61037103ae3722c8060ff7082994836a794f978). To obtain such version, you can switch to the branch with the command,

git checkout AFL_version

About

CarpetFuzz's fuzzer component. Belongs to CarpetFuzz main repo.

Resources

Readme

License

Apache-2.0 license
Activity

Stars

13 stars

Watchers

1 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages