TechQA.

How about Fuzzing a binary by reversing it to source code?

360 views Asked by At

I am researching how to use AFL to fuzz a binary. I know that it is possible to use qemu mode to achieve it. However, using qemu mode really impact the fuzzing performance.

Thus, I am wondering that what if I reverse the target binary to C code by using IDA PRO, then compile the C code with afl-gcc? Will this idea going to be work? Or it will lead to distortion.

c ida fuzzing american-fuzzy-lop
Original Q&A
2

There are 2 answers

0
nevilad On

Fuzzing a binary without source code can be done with tools like McSema. It lifts the binary to LLVM bitcode and allows you to fuzz it with libFuzzer. But as user3804799 already said, decompilation isn't perfect.

0
Robert Morris On

From my experience the code should be executable to be able to run fuzzing well. In case it is source code and you won't be able to execute it, the fuzzing won't work as expected. However, when you have the source code, you may perform the static code analytics.

Related Questions in C

Related Questions in IDA

Related Questions in FUZZING

Related Questions in AMERICAN-FUZZY-LOP

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions