bannsec

I basically switched over to symbion, but that is having issues lately too. Not sure there's a good working solution anymore. On Fri, Apr 23, 2021, 12:07 PM Joel Levis...

Cool. Would you have any recommendation on where to start looking on that? On Wed, May 27, 2020, 9:09 AM Jacob Tomlinson wrote: > Thanks for raising this @bannsec ....

Looks like this was added in afl version 2.24b ``` -------------- Version 2.24b: -------------- - Added libdislocator.so, an experimental, abusive allocator. Try it out with AFL_LD_PRELOAD=/path/to/libdislocator.so when running afl-fuzz. ```...

Turns out shellphish-afl has been updated to work with 2.52b for some time now? Guess they never pushed that update to pypi. Waiting on push. https://github.com/shellphish/shellphish-afl

Hacked together my own update for this while i wait for the actual package to be updated. autoPwn now uses 2.52b.

Initial support for `@@@` argument has been added. Currently, it only works for amd64 and likely has some bugs. If anyone wants to try, simply use it the same way...

Added support for arbitrary number of `@@@` fuzz locations: 2c66175

Supports i386 now as well

``` PROGRAM ABORT : Unable to communicate with fork server ```

Looks like "AFL_NO_FORKSRV=1" could help. Not clear exactly what we're losing with that though. Maybe make it a fallback if we see this error. https://groups.google.com/forum/#!topic/afl-users/uwO637BD2Fo