Tools to help out with afl crashdumps
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Konrad Beckmann 9e29413736 ASAN info 11 months ago
README.md ASAN info 11 months ago
afl-dedupe.sh add -m none 11 months ago

README.md

afl-tools

Tools to help out with afl crashdumps

afl-dedupe

Simple script that runs afl-tmin on each testcase and ensures that there are no duplicate test cases.

Extract callstacks

for x in deduped/unique/*; do gdb path-to-binary < <(echo "r <cmdline flags> $x"; echo "bt"; echo "exploitable") > $x.trace; done

Extract unique crashing instructions

for x in deduped/unique/*; do gdb path-to-binary < <(echo "r <cmdline flags> $x"; echo "bt";) | grep "=> 0x" > $x.trace; done
cat deduped/unique/*.trace | sort | uniq

Remember to export ASAN_OPTIONS=abort_on_error=1 in case ASAN is used.