- Thanks for the great works: AFL, WinAFL. I am planting AFL fuzzer to Windows with Pin, Intel's instrumentation tool.Before you are starting using this tool, I strongly advised you to learn AFL fuzzer first. The source code is comming soon.
- 1.0.1
- afl-fuzz [afl options] -- [Pin instrumentation options] -- target_cmd_line
e.g. afl-fuzz.exe -i input -o out -f input.txt -t 5000+ -- -coverage_module notepad.exe -cpukill -- notepad.exe @@
-
Options for AFL:
-i dir - input directory with test cases
-o dir - output directory for fuzzer findings
-t msec - timeout for each run
-f file - location read by the fuzzed program
-
Options for Pin:
-coverage_module module_name - module for which to record coverage
-cpukill - cpukill or not
-target_module module_name - in memory mode. module for which fuzzing
-start - in memory mode. fuzzing target's start offset
-end - in memory mode. fuzzing target's end offset (NOTE, only support one exit)
- None
- 2017.6.28 fixed some bugs(crash,bitmap,etc.)
- 2017.7.7 add in memory mode, but still not stable for the mult-threads targets.
- For now, it supports only 32-bit targets.