Technical Research: Fuzzing of non-instrumented apps

Topic to Evaluate

• Link to other Issue

Evaluate the use of binary instrumentation frameworks, such as QEMU, for coverage-guided fuzzing of apps where no source-code is available.

Desired output:

• Evaluation of if its possible or not to leverage a framework like QEMU to fuzz apps without requiring custom built versions.
  • Languages to focus on are C/C++, Ruby, Go, Javascript
• High-level scope and perception of difficulty of leveraging binary instrumentation and building this out for fuzz testing

Tasks to Evaluate

• Determine feasibility of the feature
• Create issue for implementation or update existing implementation issue description with implementation proposal
• Set weight on implementation issue
• If weight is greater than 5, break issue into smaller issues
• Add task
• Add task

Risks and Implementation Considerations

Team

• Add workflowplanning breakdown feature and the corresponding ~devops::<stage> and ~group::<group> labels.
• Ping the PM and EM.

/labels Category:Fuzz Testing