-
While running the LibAFL main loop:
https://github.com/sfu-rsl/symrustc/blob/653042a497cca4a8b5be5e0bed675779fc2de77c/Dockerfile#L536
the execution of `fuzz_one` in https://github.com/sfu-rsl/LibAFL…
-
Lazy construction will work better with concolic execution because it defers path splitting to the point where a value is accessed.
This cannot be done for types like Option
But it can possibly be…
-
I am trying to understand how CoFuzz's concolic execution works by running the `readelf` target.
https://github.com/Tricker-z/CoFuzz/blob/main/src/fuzz/executor.py#L130-L154 The main loop in `Hybri…
-
We are interested to use together LibAFL with SymRustC in a **generic** way, i.e. having a _framework_ taking an arbitrary Rust program in input and doing the whole simulation as **automatic** as poss…
-
The concolic branch diverged from upstream for quite a while, is there a plan to get it merged with upstream or it is going to be a hard fork?
-
Since we're building on top of LLVM, we may be able to use KLEE (http://klee.github.io/). Other sources: http://users.ece.cmu.edu/~ejschwar/bib/schwartz_2010_dynamic-abstract.html, http://cacm.acm.org…
-
### Summary
Add support for Erlang maps in cuter. Cuter already contains some of the required machinery needed for supporting maps, but it currently crashes when parsing code that uses maps.
###…
-
Add special expression which would have an identifier (string?) and array of operands. When translating the expression into Z3, a custom translator would generate the Z3 expressions. May be useful for…
-
Make graphs reusable or updateable: recording more than one trace over same IR, or update parts for new runs?
```
graph = track(f, 1, 2)
retrace!(graph, f, 1, 2) # allow different inputs?
retra…
-
This is awesome! Some minor additions (as a disclaimer, I worked on all of these projects, but I feel they're worth mentioning nonetheless as the first is, to the best of my knowledge, the first AEG s…