Date: 2018-03-16 01:06 pm (UTC)
simont: A picture of me in 2016 (Default)
From: [personal profile] simont
Ask a computer to do something and it'll cheat like hell

Another particularly annoying example of this is if you try to apply a fuzzer to some code that's not well set up to be fuzzable.

If you're using, say, AFL as your fuzzer, it likes command-line programs that it can feed stuff to on standard input and gradually tune for inputs that have interesting effects. So if you want to fuzz, say, a pile of library code that accepts input in the form of in-memory data structures, probably the first thing you do is write an AFL adapter, in the form of some sort of wrapper program that takes stuff on standard input, parses it into instances of those data structures, and calls the library routines on those in turn.

If you do this, you will inevitably spend the first week combing out the bugs AFL found in the new parsing code, and it's even money whether your patience will last long enough for AFL to start taking an interest in the code you actually wanted to test.

Two months of daily GTA causes no significant changes in behavior

What, not even being better at GTA? :-)
This account has disabled anonymous posting.
(will be screened if not validated)
If you don't have an account you can create one now.
HTML doesn't work in the subject.
More info about formatting
 
Notice: This account is set to log the IP addresses of everyone who comments.
Links will be displayed as unclickable URLs to help prevent spam.

Profile

andrewducker: (Default)
andrewducker
My NotZen Website

June 2025

S M T W T F S
1 2 3 4 5 6 7
891011121314
15161718192021
22232425262728
2930     

Most Popular Tags

Active Entries

Style Credit

Expand Cut Tags

No cut tags
Page generated Jun. 7th, 2025 03:12 pm
Powered by Dreamwidth Studios