Ivan Fratric

I see several issues with your command line - you are passing '-m' as the first argument to the target, but the target expects a file there. It should be...

Your code has bugs, this is why Jackalope is reporting all input samples are crashing. Try running it in a debugger first. > if you have an example I can...

Hi, thank you for submitting the pull request. Unfortunately, this directory (iOSOnMac) is no longer maintained and the original author is no longer at Project Zero and doesn't have the...

Hi, can you reproduce the issue using https://github.com/googleprojectzero/Jackalope/blob/main/test.cpp as target, or only with your custom target? How often does the issue occur?

That sounds correct. instrument_bb_coverage is not meant to run each time a basic block is _executed_, but rather each time a basic block is _translated_. In DR, my understanding is...

Can you explain what you mean by "repeated addresses"? Addresses of basic blocks or something else and how/where are they logged?

If the target process restarts for any reason, code is going to need to be reinstrumented (during a fuzzing session this occurs if maximum number of persistent iterations has been...

Sorry about the late reply. Unfortunately I don't have the same phone, but today I tested TinyInst on Linux again with two different phones (from Google and Samsung) and didn't...

Hey, If you'd like to debug why the `-target_method` wasn't reached, the symbol lookup happens in https://github.com/googleprojectzero/TinyInst/blob/master/macOS/debugger.cpp#L1224 . You could uncomment the printf on the previous line, and then it...

One thing I see is that `AddBreakpoint` function takes a type as a second argument, instead of using BREAKPOINT_NOTIFICATION which is reserved for dyld load notification, you should create a...