Skip to content

Add support for Linux userland ELF snapshots and fuzzing #192

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 42 commits into from
Apr 1, 2024
Merged

Add support for Linux userland ELF snapshots and fuzzing #192

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
42 commits
Select commit Hold shift + click to select a range
807f8bc
Add support for Linux userland ELF snapshots and fuzzing.
jasocrow Jan 24, 2024
21e918e
clang18
0vercl0k Feb 3, 2024
644eea7
nits
0vercl0k Feb 11, 2024
559cb2a
Ignore SIGUSR1 sigs in gdb_server.sh.
jasocrow Feb 16, 2024
36d65a3
nits
0vercl0k Feb 17, 2024
9a57e0c
clang-format, nits, hexify entry_syscall
0vercl0k Feb 17, 2024
9cfc8c0
run black on py files; dump fpst as 'new format'
0vercl0k Feb 17, 2024
caf069c
do some level of crash detection
0vercl0k Feb 17, 2024
f7eb658
format, maybe better crash detection
0vercl0k Feb 17, 2024
0ff1389
add ghetto crash detection to the other one
0vercl0k Feb 17, 2024
5444905
nits
0vercl0k Feb 17, 2024
5b31d1f
hexify registers
0vercl0k Feb 17, 2024
491d1e7
quiet
0vercl0k Feb 17, 2024
efc04a8
ugh
0vercl0k Feb 17, 2024
5113150
more hex
0vercl0k Feb 17, 2024
6727d41
bring in the x87 loading changes to make sure they dont clash
0vercl0k Feb 17, 2024
1c4813a
backends as well
0vercl0k Feb 17, 2024
ff0e0cc
disable pagination
0vercl0k Feb 17, 2024
bf7d7b0
ugh
0vercl0k Feb 17, 2024
294f586
fix fptw
0vercl0k Feb 17, 2024
aff2aef
merge in the two scripts
0vercl0k Feb 18, 2024
6ab9824
clean up pys
0vercl0k Feb 18, 2024
29686bf
make sure the file deserializes to json
0vercl0k Feb 18, 2024
7e23f31
fix
0vercl0k Feb 18, 2024
42b42fe
fix fmt
0vercl0k Feb 18, 2024
3af96df
cleanups
0vercl0k Feb 19, 2024
88ce23a
fmt
0vercl0k Feb 19, 2024
fb16023
f
0vercl0k Feb 19, 2024
09c0613
simplify
0vercl0k Feb 19, 2024
d9040e5
oops
0vercl0k Feb 19, 2024
dd49d42
allow linux dumps to load on windows
0vercl0k Feb 19, 2024
ec7a0ba
readme
0vercl0k Mar 27, 2024
87b5dcd
Merge branch 'main' into linux-snapshot
0vercl0k Mar 27, 2024
48790ad
bump
0vercl0k Mar 28, 2024
9abc678
Merge branch 'linux-snapshot' of github.com:jasocrow/wtf-linux-snapsh…
0vercl0k Mar 28, 2024
ff951c1
gold?
0vercl0k Mar 28, 2024
a482843
revert to clang17 until this libgold thing gets fixed?
0vercl0k Mar 28, 2024
ea69f12
ugh
0vercl0k Mar 28, 2024
79bc9ea
add comments before i forget
0vercl0k Mar 28, 2024
02ffb8f
add blog link, specify user mode linux
0vercl0k Mar 29, 2024
3f7004c
more acks
0vercl0k Mar 29, 2024
f303cb7
fix link
0vercl0k Mar 29, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
bump
  • Loading branch information
@0vercl0k
0vercl0k committed Mar 28, 2024
commit 48790adf22353583d66bd49f6430a9e1fa8a2cf4
2 changes: 1 addition & 1 deletion README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,7 @@ If you would like to read more about its history or how to use it on a real targ
- [Fuzzing RDPEGFX with "what the fuzz"](https://thalium.github.io/blog/posts/rdpegfx/) by [Colas Le Guernic](https://github.com/clslgrnc), Jérémy Rubert, and Anonymous
- [A Journey to Network Protocol Fuzzing – Dissecting Microsoft IMAP Client Protocol](https://www.fortinet.com/blog/threat-research/analyzing-microsoft-imap-client-protocol) by [Wayne Chin Yick Low](https://www.fortinet.com/blog/search?author=Wayne+Chin+Yick+Low)

Special thanks to [@yrp604](https://github.com/yrp604) for providing valuable inputs throughout the project, [@masthoon](https://github.com/masthoon) for suggesting to write a demo targeting [HEVD](https://github.com/hacksysteam/HackSysExtremeVulnerableDriver) secure mode, and Jason Crowder / Kyle Ossinger from Cisco ASIG for contributing the Linux mode.
Special thanks to [@yrp604](https://github.com/yrp604) for providing valuable inputs throughout the project, [@masthoon](https://github.com/masthoon) for suggesting to write a demo targeting [HEVD](https://github.com/hacksysteam/HackSysExtremeVulnerableDriver) secure mode, [Colas Le Guernic](https://github.com/clslgrnc) / Jérémy Rubert / Anonymousand for the [bochscpu](https://github.com/0vercl0k/wtf/pull/137) edge coverage and Jason Crowder / Kyle Ossinger from Cisco ASIG for [the Linux mode](https://github.com/0vercl0k/wtf/pull/192).

## Usage

Expand Down
4 changes: 2 additions & 2 deletions linux_mode/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@
<img src='https://github.com/0vercl0k/wtf/workflows/Builds/badge.svg'/>
</p>
<p>
<img src='pics/wtf-linux.gif'/>
<img src='../pics/wtf-linux.gif'/>
</p>
</div>

Expand All @@ -16,7 +16,7 @@
This provides experimental Linux ELF userland snapshotting support based on previous work by [Kasimir](https://github.com/0vercl0k/wtf/pull/102) and scripts from [Snapchange](https://github.com/awslabs/snapchange/tree/main/qemu_snapshot).

<p align='center'>
<img src='pics/wtf-linux-snapshot.webp'>
<img src='../pics/wtf-linux-snapshot.webp'>
</p>

## Setting up the environment
Expand Down
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy