Skip to content

Latest commit

 

History

History
77 lines (48 loc) · 2.29 KB

README.md

File metadata and controls

77 lines (48 loc) · 2.29 KB

afl_cppcheck

Codacy Badge Linux Build Status

A script to start fuzzing of cppcheck with american fuzzy lop

A screenshot of afl fuzzing of cppcheck

First usage

Restart

  • cd afl_cppcheck
  • bash restart.sh

Crash Reduction

In case afl-fuzz has found crashes, you might be interested in getting a small test case, leading to a crash of Cppcheck. In this case, call reduce.sh. After the script has finished, the reduced crashes can be found in afl_cppcheck/crashes.

Installation Requirements

Ubuntu

The following packages shall be installed before fuzzing can start

 $ sudo apt-get install libpcre3-dev fdupes

Utility scripts

pullAndBuild.sh:

In case you have already checked out afl-fuzz and cppcheck, but the executables are old. Use pullAndBuild.sh to refresh your tool environment. This script pulls the latest sources and builds all executables required for fuzzing cppcheck.

freshStart.sh:

Execute this script in case you intend to start fuzzing cppcheck from new. This script throws away previously generated results, stored in afl-output.

restart.sh:

This script restarts a previously stopped fuzzing session. The required input data is taken from afl-output-folder.

reduce.sh:

This script tries to reduce crashes as much as possible. After the crashes have been reduced, you might call backtrace.sh in order to create gdb-backtrace files.

backtrace.sh

This script generates gdb-backtraces from reduced crash files. Call it after reduce.sh

initialSetup.sh:

This script clones the latest version of Cppcheck and afl-fuzz from github.