Artical

brew install afl-fuzz

MacOS with AFL Fuzz

SL=/System/Library; PL=com.apple.ReportCrash
launchctl unload -w ${SL}/LaunchAgents/${PL}.plist
sudo launchctl unload -w ${SL}/LaunchDaemons/${PL}.Root.plist

fuzzing python https://tomforb.es/segfaulting-python-with-afl-fuzz

repos and tools

https://www.owasp.org/index.php/Fuzzing OWASP Fuzzing
https://github.com/secfigo/Awesome-Fuzzing
https://github.com/trailofbits/echidna ETH fuzzing tools
https://fuzzing.info/papers/
https://www.youtube.com/playlist?list=PLtPrYlwXDImiO_hzK7npBi4eKQQBgygLD 视频播放列表，关于fuzzing
https://github.com/fuzzdb-project/fuzzdb fuzz的db
http://llvm.org/docs/LibFuzzer.html
fuzzer-test-suite: https://github.com/google/fuzzer-test-suite 学着玩玩
AFL: http://lcamtuf.coredump.cx/afl/ (https://lcamtuf.coredump.cx/afl/releases/afl-latest.tgz)
AFL python interface : https://github.com/shellphish/fuzzer
AFL Unicorn: https://github.com/Battelle/afl-unicorn
AFL training: https://github.com/ThalesIgnite/afl-training
AFL go version: https://github.com/dvyukov/go-fuzz
AFL rust version: https://github.com/rust-fuzz/afl.rs
AFL python version: http://jwilk.net/software/python-afl
WAFL
Morph
Os-fuzz
zzuf 使用过了
honggfuzz
OSXFuzz
sCFF分布式。py2.7 + AWS https://github.com/softscheck/sCFF

Other

fuzzing初尝试，跟着 https://github.com/google/fuzzer-test-suite 的教程
heartbleed 也是通过fuzzing发现的。厉害了卧槽。
微软研究院Seurity Risk Detection中关于fuzzing with machine learning , 但是这个视频只是使用。https://docs.microsoft.com/en-us/security-risk-detection/how-to/

问题来了：

fuzzing原理是什么

先看下AFL的原理 http://lcamtuf.coredump.cx/afl/technical_details.txt

怎么写fuzzing的代码?
怎么根据fuzzing 后的结果写POC代码?
怎么自动化fuzzing?
怎么使用机器学习生成，并去攻击?
怎么进行内核的fuzzing windows kernel, linux kernel osx kernel?

https://github.com/google/syzkaller

reanimat0r/start_fuzzing.md

Artical

repos and tools

Other