Frida API Fuzzer - experimental fuzzer meant to be used for API in-memory fuzzing.

(180 views)

This experimental fuzzer is meant to be used for API in-memory fuzzing. The design is highly inspired and based on AFL/AFL++. ATM the mutator is quite simple, just the AFL's havoc and splice stages. I tested only the examples under tests/, this is a WIP project but is known to works at least on GNU/Linux x86_64 and Android x86_64. You need Frida >= 12.8.1 to run this (pip3 install -U frida) and frida-tools to compile the harness. Usage The fuzz library has to be imported into a custom harness and then compiled with frida-compile to generate the agent that frida-fuzzer will inject into the target app. The majority of the logic of the fuzzer is in the agent. A harness has the following format: var fuzz = require("./fuzz"); var TARGET_MODULE = "test_linux64"; var TARGET_FUNCTION = DebugSymbol.fromName("target_func").address;; var RET_TYPE = "void"; var ARGS_TYPES = ['pointer', 'int']; var func_handle = new NativeFunction(TARGET_FUNCTION, RET_TYPE,....

April 7, 2020
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments
© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023
What certifications or qualifications do you hold?
Max. file size: 150 MB.
What level of experience should the ideal candidate have?
What certifications or qualifications are preferred?

Download Free eBook

Step 1 of 4

Name(Required)

We’re committed to your privacy. Hakin9 uses the information you provide to us to contact you about our relevant content, products, and services. You may unsubscribe from these communications at any time. For more information, check out our Privacy Policy.