https://github.com/andreafioraldi/libafl_quickjs_fuzzing

An example fuzzer about how to fuzz a JS engine combinign Nautilus with Token-level fuzzing
https://github.com/andreafioraldi/libafl_quickjs_fuzzing

Last synced: 9 months ago
JSON representation

An example fuzzer about how to fuzz a JS engine combinign Nautilus with Token-level fuzzing

Host: GitHub
URL: https://github.com/andreafioraldi/libafl_quickjs_fuzzing
Owner: andreafioraldi
License: apache-2.0
Created: 2021-12-16T16:29:26.000Z (over 4 years ago)
Default Branch: master
Last Pushed: 2024-03-05T18:50:19.000Z (over 2 years ago)
Last Synced: 2025-08-12T22:48:42.133Z (10 months ago)
Language: Rust
Homepage:
Size: 27.3 KB
Stars: 46
Watchers: 5
Forks: 7
Open Issues: 4
Metadata Files:
- Readme: README.md
- License: LICENSE-APACHE

Awesome Lists containing this project

README

# LibAFL QuickJS Fuzzing Example

An example fuzzer about how to fuzz a JS engine combinign Nautilus with Token-level fuzzing.

## Prepare

Make sure to have Rust nigthly installed and call the bash script to build everything.

```
bash ./build.sh
```

You ready-to-use fuzzer is now `fuzz_eval`.

## Run

To run the fuzzer, you must at least choose a TCP port for the broker and the cores in which you want to spawn the instances (you can list them individually like 0,1,2,3 or specify a range like 0-3).

```
./fuzz_eval --cores 0-12 --broker-port 1337
```

## Reproduce

If you find crashes or you want to print an item of the corpus, use the `--repro` command line option of the fuzzer.

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/andreafioraldi/libafl_quickjs_fuzzing

Awesome Lists containing this project

README