IMF: Inferred Model-based Fuzzer
IMF is a kernel API fuzzer that leverages an automated API model inferrence techinque proposed in our paper at CCS. IMF currently only supports macOS. To see how to configure and run IMF, see the followings.
Setup
Requirements
- python2.7
- pypy
- clang
How to run
- Generate hooking library for APIs
$ ./gen-hook [output(hooking code) path]
$ clang -Wall -dynamiclib -framework IOKit -framework CoreFoundation -arch i386\
-arch x86_64 hook.c -o hook
- Collect logs
$ DYLD_INSERT_LIBRARIES=[hooking library path] [program path] [program args]
- Filter logs
$ ./filter-log [log dir] [output dir] [# of output(filtered log)] [# of core]
- Infer a model and generate a fuzzer.
$ ./gen-fuzz [filtered logs path] [output(fuzzer code) path] [# of core]
- Compile the fuzzer
$ clang -framework IOKit -framework CoreFoundation -arch i386 fuzz.c -o fuzz
- Run the fuzzer
$ ./fuzz -f [log path] -s [seed] -b [bitlen] -r [rate] -l [# of max loops]
- You may want to run the generated fuzzer within a while loop.
CVEs
- CVE-2017-7159
Authors
This research project has been conducted by SoftSec Lab at KAIST.
Citing IMF
To cite our paper (pdf):
@INPROCEEDINGS{han:ccs2017,
author = {HyungSeok Han and Sang Kil Cha},
title = {Inferred Model-based Fuzzing},
booktitle = {Proceedings of the ACM Conference on Computer and Communications Security},
year = {2017},
pages = {2345--2358}
}
Acknowledgement
The work was supported by Institute for Information & communications Technology Promotion (IITP) grant funded by the Korea government (MSIT).
78 Dec 21, 2022
67 Jan 03, 2023
21.1k Dec 29, 2022
27 Jan 07, 2023
54 Jan 07, 2023
11 Nov 08, 2022
74 Dec 13, 2022
2k Jan 01, 2023
74 Dec 22, 2022
37 Sep 15, 2022
0 Jan 11, 2022
119 Jan 04, 2023
1 Oct 25, 2021
36 Dec 02, 2022
4 Jun 13, 2022
2 Mar 24, 2022
19 Nov 27, 2022
33 Oct 31, 2022
2 Jul 16, 2022
2.5k Jan 06, 2023