Learn about an innovative approach to binary fuzzing in this 11-minute conference talk that introduces a QEMU native hooking bridge for enhanced fuzz testing capabilities. Explore how this solution improves upon AFLplusplus's fuzzing capabilities when working with compiled binary code without source code access. Discover the advantages of native instruction hooking and memory control support in QEMU, which enables efficient patching and fixing of roadblock locations during fuzzing campaigns. Compare this approach to the existing UNICORN wrapper solution, understanding its performance benefits and simplified configuration requirements. Follow along with practical examples demonstrating the implementation and usage of the hooking bridge, while gaining insights into its superior performance compared to AFLplusplus's UNICORN mode.
Overview
Syllabus
QEMU-Native Hooking Bridge for Binary Fuzzing - Subhojeet Mukherjee, Hitachi India Pvt. Ltd.
Taught by
OpenSSF
Related Courses
-
Virtual Device Fuzzing Support in QEMU
-
Fuzz Everything, Everywhere, All at Once - Advanced QEMU-Based Fuzzing
-
T-Fuzz - Fuzzing by Program Transformation
-
SymFit: Making the Common Concrete Case Fast for Binary-Code Concolic Execution
-
A Binary-level Thread Sanitizer - Why Sanitizing on the Binary Level is Hard
-
IDA2Obj - Static Binary Instrumentation on Steroids
