-
Hi,
As an idle time project/hobby I've spent some time fuzzing various image processing related applications/libraries. I've found some interesting bugs; I was confident that some were even intere…
-
I apologize for the vague title, but I'm not entirely sure where the real issue lies.
# The problem
I was trying to get [nyx_libxml2_standalone](https://github.com/AFLplusplus/LibAFL/tree/2f9b27…
-
Hi folks,
A crash was found while fuzz testing of the vpack-to-json binary which can be triggered via a malformed VPACK file. Although this malformed file only crashes the program as-is, it could p…
-
Hey,
thanks for this great library. I've gotten it to compile/install on Mac - but only after installing greenstack. Now I am trying the same thing on my Raspberry Pi (OS: Raspian, based on Debian 9)…
-
Metabug
-
Multipart parser currently doesn't respect max-size limits. This needs to be done.
Also need more tests for the request body parser. Off the top of my head:
- ~~Base64/quoted-printable/etc. encodin…
-
AFL (American Fuzzy Lop): http://lcamtuf.coredump.cx/afl/
-
#693 introduced fuzzing targets to some crates and in the interest of avoiding forever lasting PRs, I didn't fix all of the found issues. Current status at the end of the PR is:
* packet: address…
-
### Summary
Add the ability to insert instrumentation to track code coverage.
### Motivation
Besides the usual benefits for users who are interested in the code coverage of their own tests or…
-
We aim to meet the OpenSSF Best Practices passing or higher badge level. One of the requirements is to run dynamic code analysis on the project's source code.
See the "Analysis" section here: https…