sslab-gatech / qsym

QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
Other
627 stars 133 forks source link

How to run QSYM against CGC binary #54

Closed CvvT closed 4 years ago

CvvT commented 4 years ago

Hi there, Thanks for providing such an amazing tool. I tried QSYM recently against CGC binaries, but got the following error: E Unable to load ***/obj-ia32/libqsym.so. Check the architecture type.

I used driller-afl to fuzz those binaries. I noticed that in the QSYM's paper CGC binaries were also evaluated with QSYM. I wonder how can I achieve it?

Thanks, Weiteng

insuyun commented 4 years ago

Hi. Since QSYM only supports ELF binary, we used a simple wrapper for cgc (https://github.com/jakkdu/libcgc-x86) to make a CGC binary into ELF format. After running them, we used the common shellphish-afl for QSYM and driller to measure code coverage.

CvvT commented 4 years ago

Awesome! Thanks for your swift reply.