Intro to fuzzing with AFL

posted on 2022-07-04 14:31:44

Fuzzing is essentially testing code with lots random inputs to hopefully get a crash if the code is incorrect.

AFL (American Fuzzy Lop ^ thanks wikipedia) is a bit smarter than the average jank script though, being a genetic fuzzer which uses the compiler's knowledge of branches (if/while) to aggressively root out new paths through code, keeping "interesting" inputs for further mutation in some loose analogy to evolutionary success. This also takes some extra setup, but is extremely effective in practice for finding elusive bugs.

This blog covers automata, data-structures, editing, fuzzing, meta, terminals

View content from 2023-04, 2022-07, 2022-01, 2021-11, 2020-08