aboutsummaryrefslogtreecommitdiff
path: root/docs/fuzzing_binary-only_targets.md
diff options
context:
space:
mode:
authorMark <mteffeteller@google.com>2024-03-29 16:23:37 +0000
committerMark <mteffeteller@google.com>2024-03-29 16:23:37 +0000
commit5c891e9c31cf7e1148e73150ad8008d5d2606686 (patch)
treeae0e5e5f1bc5b1b1362b14eadd2649868dc7cdf9 /docs/fuzzing_binary-only_targets.md
parent4c0e8a733dffdb238440d79687d9cdc8ac709b21 (diff)
parent775861ea94d00672c9e868db329073afd699b994 (diff)
downloadAFLplusplus-main.tar.gz
Merge commit '775861ea94d00672c9e868db329073afd699b994' into tmp_auto_upgradeHEADmastermain
Update AFLpp repo with upstream using external_updater Test: Build afl-fuzz and run an AFL fuzzer Bug: 331246566 Change-Id: Ia6ee9cb4adea9d9912fd86d86e1b92123fe44127
Diffstat (limited to 'docs/fuzzing_binary-only_targets.md')
-rw-r--r--docs/fuzzing_binary-only_targets.md8
1 files changed, 1 insertions, 7 deletions
diff --git a/docs/fuzzing_binary-only_targets.md b/docs/fuzzing_binary-only_targets.md
index 9d9d6bb6..a151bce4 100644
--- a/docs/fuzzing_binary-only_targets.md
+++ b/docs/fuzzing_binary-only_targets.md
@@ -94,8 +94,7 @@ For more information, see
In FRIDA mode, you can fuzz binary-only targets as easily as with QEMU mode.
FRIDA mode is most of the times slightly faster than QEMU mode. It is also
-newer, lacks COMPCOV, and has the advantage that it works on MacOS (both intel
-and M1).
+newer, and has the advantage that it works on MacOS (both intel and M1).
To build FRIDA mode:
@@ -113,10 +112,6 @@ The mode is approximately 2-5x slower than compile-time instrumentation, and is
less conducive to parallelization. But for binary-only fuzzing, it gives a huge
speed improvement if it is possible to use.
-If you want to fuzz a binary-only library, then you can fuzz it with frida-gum
-via frida_mode/. You will have to write a harness to call the target function in
-the library, use afl-frida.c as a template.
-
You can also perform remote fuzzing with frida, e.g., if you want to fuzz on
iPhone or Android devices, for this you can use
[https://github.com/ttdennis/fpicker/](https://github.com/ttdennis/fpicker/) as
@@ -302,7 +297,6 @@ some are very hard to set up...
* S2E: [https://github.com/S2E](https://github.com/S2E)
* TinyInst:
[https://github.com/googleprojectzero/TinyInst](https://github.com/googleprojectzero/TinyInst)
- (Mac/Windows only)
* ... please send me any missing that are good
## Closing words