Where to find and How to choose the START_FUNCTION in harnessgen

sslab-gatech / winnie

Winnie is an end-to-end system that makes fuzzing Windows applications easy

MIT License

534 stars 74 forks source link

Where to find and How to choose the START_FUNCTION in harnessgen #13

Open JsHuang opened 2 years ago

JsHuang commented 2 years ago

While using "Harness Generator", the synthesizer.py script needs an START_FUNCTION parameter. Where to find this function , dose it was automatic generated or needs manual efforts?

xxldao commented 2 years ago

START_FUNCTION is not a real name, it's an exported name in the DLL that you want to fuzz.

vishwaraj101 commented 2 years ago

Hi @stong @xxldao need to ask how to generate the harness using synthesizer.py I have reached to the final step but not sure about START_FUNCTION (i tried giving the function name too directly but it gives me the error ---> "Cannot find the starting function from the trace file". Could you pllease guide me how to proceed from here?

Thanks, Vraj