search

ex0dus-0x / fuzzable

Framework for Automating Fuzzable Target Discovery with Static Analysis.
MIT License
507 stars 53 forks source link

Harness generation support for C/C++ source #13

Open ex0dus-0x opened 2 years ago

ex0dus-0x commented 2 years ago

We currently don't support this even though a very basic template exists in templates/linux_source_harness.cpp. When supporting this feature for source, we could approach this as so:

  1. Find the best unit test function candidate that maxmimizes coverage into the fuzzing target we want to generate a harness for.
  2. Extract the implementation of the test and create a DeepState harness from it, or maybe just stick it inside the basic template we already have.
  3. If unable to, return our basic template with enough information we can fill in.
jdefrancesco commented 10 months ago

I can add support for generating WinAFL harnesses.