SlideShare a Scribd company logo

FuzzyDebugger.pdf

R
ritviktanksalkar1

A debugger implementation with fuzzer integrated

Science
1 of 21
Download to read offline
FuzzyDbg 1 / 12 Department of Computer Science & Engineering Amrita School of Engineering Amrita Vishwa Vidyapeetham Name Roll No Ritvik Tanksalkar AM.EN.U4CSE18148 Sandhra Bino AM.EN.U4CSE18049 Vivek Kamisetty AM.EN.U4CSE18061 Vishnu Madhav AM.EN.U4CSE18144 Guide Vipin Pavithran
2 / 12 ➔ Problem Definition ➔ Problem Description ➔ Block Diagram ➔ Module Description OUTLINE
Problem Statement 3 / 12 Generic debuggers like GDB don’t have functionalities like viewing call graphs generated and an efficient fuzzing functionality. Fuzzing is the most advanced and fastest way to find bugs in software. This project aims to build a simple and fast debugger with an implementation of graph view and fuzzing functionality.
In our implementation, the tool would let the user debug and test their binary using the fuzzing engine. The end product would include a generic interface with the debugger, dump program state, stack, memory maps, registers etc. An automated mutation engine would generate input logs and crash logs along with a backtrace at the instance of a crash. 4 / 12 Problem Description
Block Diagram - fdb
Block Diagram - Debugger
Our implementation of the debugger has the following features: ➔ Attach to running process ➔ Set breakpoints and delete them ➔ View registers Stages of Implementation
Stages of Implementation ➔ Debugger Attach to a process ◆ Fork and execve the target process ◆ Get address of entryPoint from elf header. ◆ Use ptrace to Set breakpoint at entryPoint. ◆ Continue execution and handle to user. ➔ Debugger Context ◆ Register values at every instruction
9 / 12 Stages of Implementation ➔ Debugger Breakpoints ◆ Set breakpoint at a given address ◆ Use of a breakpoint structure table to save original address values. ◆ Await for events in the traced process. ◆ Handle events like Signals, termination conditions etc.
10 / 12 The WIP project implementation consists of a Command line based debugger divided into the following major modules: ➔ FuzzyDbg ◆ The main debugger interface ◆ Handles commands given by user ◆ Reads the elf-header for future use. ➔ fdb-utils ◆ Implementation of debugger helper functions like parsing inputs. ◆ Functionality to get and set register values from traced process. Modules
11 / 12 Module Description ➔ Breakpoints ◆ Functionality to set and delete breakpoints. ◆ Patching the required instruction with xcc debugger interrupt. ◆ Saving the patched address along with the original address into a breakpoint structure. ◆ Use this to repatch the address back to original state. ➔ Elf-utils ◆ Functionality to parse elf header. ◆ Useful to find information like entryPoint. ◆ Also helps in detecting if binary is dynamic executable , whether it is Position Independent or not (PIE). ◆ Provides functionality to efficiently print out the elf header in an order.
12 / 12 Module Description ➔ Context ◆ The main debugger interface ◆ Handles commands given by user ➔ Attach ◆ Implementation of attach functionality ◆ Responsible for forking the debugger and tracing the child process ◆ Execve the target process and trace it with parent. ◆ Handle events that occur in child with every functionality
Test binaries Performance Metrics Results 13 / 12 Experimental
Test Binaries ➔ Basic testing with test binaries ◆ Binaries can be dynamic or static executables. ◆ Binaries can be position dependent or not.
Performance Metrics This unique implementation of a combination of debugger and Fuzz tester has multiple variable for performance: ● The fuzzer efficiency result wrt number of faults found within the test/debuggee application. ● Also corner cases and test cases of types of binaries that can work smoothly on this fuzzer
Results
Results
Major Project milestones Modules to be completed Expected Deadlines 18 / 12 Future Work
The full completed project is a Debugger with added support to fuzz test the binary or process loaded to the debugger using a Radamsa based mutation generation engine. The current implementation is complete in its first phase having the basic features of a debugger. The modules currently under WIP status are : ● Making debugger more robust and full of features. ● Graph View of the disassembly for easier visual static analysis and ● Radamsa Integration for fuzzing the test binary passed as argument to the debugger. Modules to be Completed
Expected date to be Completed The expected date of Completion for the Project is estimated to be around April 2022 along with the Paper publication and submission for CFP at a major conference for acceptance.
Thank You

Recommended

Analysing in depth work manager
Analysing in depth work managerAnalysing in depth work manager
Analysing in depth work managerlpu
 
20120308 droid4me-paug presentation
20120308 droid4me-paug presentation20120308 droid4me-paug presentation
20120308 droid4me-paug presentationParis Android User Group
 
ESL report
ESL reportESL report
ESL reportExpress News
 
ScalaUA - distage: Staged Dependency Injection
ScalaUA - distage: Staged Dependency InjectionScalaUA - distage: Staged Dependency Injection
ScalaUA - distage: Staged Dependency Injection7mind
 
Debugging,Troubleshooting & Monitoring Distributed Web & Cloud Applications a...
Debugging,Troubleshooting & Monitoring Distributed Web & Cloud Applications a...Debugging,Troubleshooting & Monitoring Distributed Web & Cloud Applications a...
Debugging,Troubleshooting & Monitoring Distributed Web & Cloud Applications a...Theo Jungeblut
 
Ad111
Ad111Ad111
Ad111ddrschiw
 
AD111 -- Harnessing the Power of Server-Side JavaScript and Other Advanced XP...
AD111 -- Harnessing the Power of Server-Side JavaScript and Other Advanced XP...AD111 -- Harnessing the Power of Server-Side JavaScript and Other Advanced XP...
AD111 -- Harnessing the Power of Server-Side JavaScript and Other Advanced XP...ddrschiw
 
DDD with Behat
DDD with BehatDDD with Behat
DDD with BehatAnton Serdyuk
 

Recommended

Analysing in depth work manager
Analysing in depth work managerAnalysing in depth work manager
Analysing in depth work managerlpu
 
20120308 droid4me-paug presentation
20120308 droid4me-paug presentation20120308 droid4me-paug presentation
20120308 droid4me-paug presentationParis Android User Group
 
ESL report
ESL reportESL report
ESL reportExpress News
 
ScalaUA - distage: Staged Dependency Injection
ScalaUA - distage: Staged Dependency InjectionScalaUA - distage: Staged Dependency Injection
ScalaUA - distage: Staged Dependency Injection7mind
 
Debugging,Troubleshooting & Monitoring Distributed Web & Cloud Applications a...
Debugging,Troubleshooting & Monitoring Distributed Web & Cloud Applications a...Debugging,Troubleshooting & Monitoring Distributed Web & Cloud Applications a...
Debugging,Troubleshooting & Monitoring Distributed Web & Cloud Applications a...Theo Jungeblut
 
Ad111
Ad111Ad111
Ad111ddrschiw
 
AD111 -- Harnessing the Power of Server-Side JavaScript and Other Advanced XP...
AD111 -- Harnessing the Power of Server-Side JavaScript and Other Advanced XP...AD111 -- Harnessing the Power of Server-Side JavaScript and Other Advanced XP...
AD111 -- Harnessing the Power of Server-Side JavaScript and Other Advanced XP...ddrschiw
 
DDD with Behat
DDD with BehatDDD with Behat
DDD with BehatAnton Serdyuk
 
Serverless Preview Environments @ Boston DevOps
Serverless Preview Environments @ Boston DevOpsServerless Preview Environments @ Boston DevOps
Serverless Preview Environments @ Boston DevOpsJoseph Lust
 
Sprint 17
Sprint 17Sprint 17
Sprint 17ManageIQ
 
Raising ux bar with offline first design
Raising ux bar with offline first designRaising ux bar with offline first design
Raising ux bar with offline first designKyrylo Reznykov
 
Jump into React-Native (Class 6)
Jump into React-Native (Class 6)Jump into React-Native (Class 6)
Jump into React-Native (Class 6)Waqqas Jabbar
 
Apache Flink Worst Practices
Apache Flink Worst PracticesApache Flink Worst Practices
Apache Flink Worst PracticesKonstantin Knauf
 
Debugging Modern C++ Application with Gdb
Debugging Modern C++ Application with GdbDebugging Modern C++ Application with Gdb
Debugging Modern C++ Application with GdbSenthilKumar Selvaraj
 
Analysing in depth work manager
Analysing in depth work managerAnalysing in depth work manager
Analysing in depth work managerbhatnagar.gaurav83
 
Gradle - the Enterprise Automation Tool
Gradle - the Enterprise Automation ToolGradle - the Enterprise Automation Tool
Gradle - the Enterprise Automation ToolIzzet Mustafaiev
 
Tool overview – how to capture – how to create basic workflow .pptx
Tool overview – how to capture – how to create basic workflow .pptxTool overview – how to capture – how to create basic workflow .pptx
Tool overview – how to capture – how to create basic workflow .pptxRUPAK BHATTACHARJEE
 
Introductiontoasp netwindbgdebugging-100506045407-phpapp01
Introductiontoasp netwindbgdebugging-100506045407-phpapp01Introductiontoasp netwindbgdebugging-100506045407-phpapp01
Introductiontoasp netwindbgdebugging-100506045407-phpapp01Camilo Alvarez Rivera
 
Bots on guard of sdlc
Bots on guard of sdlcBots on guard of sdlc
Bots on guard of sdlcAlexey Tokar
 
Liferay portals in real projects
Liferay portals in real projectsLiferay portals in real projects
Liferay portals in real projectsIBACZ
 
IDE and Toolset For Magento Development
IDE and Toolset For Magento DevelopmentIDE and Toolset For Magento Development
IDE and Toolset For Magento DevelopmentAbid Malik
 
Java script best practices v4
Java script best practices v4Java script best practices v4
Java script best practices v4Thor Jørund Nydal
 
Algorithm,Pseudocode,Flowchart.pptx
Algorithm,Pseudocode,Flowchart.pptxAlgorithm,Pseudocode,Flowchart.pptx
Algorithm,Pseudocode,Flowchart.pptxDrThenmozhiKarunanit
 
PRG/215 ENTIRE CLASS UOP TUTORIALS
PRG/215 ENTIRE CLASS UOP TUTORIALSPRG/215 ENTIRE CLASS UOP TUTORIALS
PRG/215 ENTIRE CLASS UOP TUTORIALSSharon Reynolds
 
Ad109 - XPages Performance and Scalability
Ad109 - XPages Performance and ScalabilityAd109 - XPages Performance and Scalability
Ad109 - XPages Performance and Scalabilityddrschiw
 
What is the best approach to tdd
What is the best approach to tddWhat is the best approach to tdd
What is the best approach to tddLuca Mattia Ferrari
 
Sdlc
SdlcSdlc
Sdlcmeenakshi sv
 
Java Chapter 2 Overview.ppt
Java Chapter 2 Overview.pptJava Chapter 2 Overview.ppt
Java Chapter 2 Overview.pptMiltonMolla1
 
Chemistry 4th semester series (krishna).pdf
Chemistry 4th semester series (krishna).pdfChemistry 4th semester series (krishna).pdf
Chemistry 4th semester series (krishna).pdfSumit Kumar yadav
 
Spermiogenesis or Spermateleosis or metamorphosis of spermatid
Spermiogenesis or Spermateleosis or metamorphosis of spermatidSpermiogenesis or Spermateleosis or metamorphosis of spermatid
Spermiogenesis or Spermateleosis or metamorphosis of spermatidSarthak Sekhar Mondal
 

More Related Content

Similar to FuzzyDebugger.pdf

Serverless Preview Environments @ Boston DevOps
Serverless Preview Environments @ Boston DevOpsServerless Preview Environments @ Boston DevOps
Serverless Preview Environments @ Boston DevOpsJoseph Lust
 
Raising ux bar with offline first design
Raising ux bar with offline first designRaising ux bar with offline first design
Raising ux bar with offline first designKyrylo Reznykov
 
Jump into React-Native (Class 6)
Jump into React-Native (Class 6)Jump into React-Native (Class 6)
Jump into React-Native (Class 6)Waqqas Jabbar
 
Apache Flink Worst Practices
Apache Flink Worst PracticesApache Flink Worst Practices
Apache Flink Worst PracticesKonstantin Knauf
 
Debugging Modern C++ Application with Gdb
Debugging Modern C++ Application with GdbDebugging Modern C++ Application with Gdb
Debugging Modern C++ Application with GdbSenthilKumar Selvaraj
 
Analysing in depth work manager
Analysing in depth work managerAnalysing in depth work manager
Analysing in depth work managerbhatnagar.gaurav83
 
Gradle - the Enterprise Automation Tool
Gradle - the Enterprise Automation ToolGradle - the Enterprise Automation Tool
Gradle - the Enterprise Automation ToolIzzet Mustafaiev
 
Tool overview – how to capture – how to create basic workflow .pptx
Tool overview – how to capture – how to create basic workflow .pptxTool overview – how to capture – how to create basic workflow .pptx
Tool overview – how to capture – how to create basic workflow .pptxRUPAK BHATTACHARJEE
 
Introductiontoasp netwindbgdebugging-100506045407-phpapp01
Introductiontoasp netwindbgdebugging-100506045407-phpapp01Introductiontoasp netwindbgdebugging-100506045407-phpapp01
Introductiontoasp netwindbgdebugging-100506045407-phpapp01Camilo Alvarez Rivera
 
Bots on guard of sdlc
Bots on guard of sdlcBots on guard of sdlc
Bots on guard of sdlcAlexey Tokar
 
Liferay portals in real projects
Liferay portals in real projectsLiferay portals in real projects
Liferay portals in real projectsIBACZ
 
IDE and Toolset For Magento Development
IDE and Toolset For Magento DevelopmentIDE and Toolset For Magento Development
IDE and Toolset For Magento DevelopmentAbid Malik
 
Algorithm,Pseudocode,Flowchart.pptx
Algorithm,Pseudocode,Flowchart.pptxAlgorithm,Pseudocode,Flowchart.pptx
Algorithm,Pseudocode,Flowchart.pptxDrThenmozhiKarunanit
 
PRG/215 ENTIRE CLASS UOP TUTORIALS
PRG/215 ENTIRE CLASS UOP TUTORIALSPRG/215 ENTIRE CLASS UOP TUTORIALS
PRG/215 ENTIRE CLASS UOP TUTORIALSSharon Reynolds
 
Ad109 - XPages Performance and Scalability
Ad109 - XPages Performance and ScalabilityAd109 - XPages Performance and Scalability
Ad109 - XPages Performance and Scalabilityddrschiw
 
What is the best approach to tdd
What is the best approach to tddWhat is the best approach to tdd
What is the best approach to tddLuca Mattia Ferrari
 
Java Chapter 2 Overview.ppt
Java Chapter 2 Overview.pptJava Chapter 2 Overview.ppt
Java Chapter 2 Overview.pptMiltonMolla1
 

Similar to FuzzyDebugger.pdf (20)

Serverless Preview Environments @ Boston DevOps
Serverless Preview Environments @ Boston DevOpsServerless Preview Environments @ Boston DevOps
Serverless Preview Environments @ Boston DevOps
 
Sprint 17
Sprint 17Sprint 17
Sprint 17
 
Raising ux bar with offline first design
Raising ux bar with offline first designRaising ux bar with offline first design
Raising ux bar with offline first design
 
Jump into React-Native (Class 6)
Jump into React-Native (Class 6)Jump into React-Native (Class 6)
Jump into React-Native (Class 6)
 
Apache Flink Worst Practices
Apache Flink Worst PracticesApache Flink Worst Practices
Apache Flink Worst Practices
 
Debugging Modern C++ Application with Gdb
Debugging Modern C++ Application with GdbDebugging Modern C++ Application with Gdb
Debugging Modern C++ Application with Gdb
 
Analysing in depth work manager
Analysing in depth work managerAnalysing in depth work manager
Analysing in depth work manager
 
Gradle - the Enterprise Automation Tool
Gradle - the Enterprise Automation ToolGradle - the Enterprise Automation Tool
Gradle - the Enterprise Automation Tool
 
Tool overview – how to capture – how to create basic workflow .pptx
Tool overview – how to capture – how to create basic workflow .pptxTool overview – how to capture – how to create basic workflow .pptx
Tool overview – how to capture – how to create basic workflow .pptx
 
Introductiontoasp netwindbgdebugging-100506045407-phpapp01
Introductiontoasp netwindbgdebugging-100506045407-phpapp01Introductiontoasp netwindbgdebugging-100506045407-phpapp01
Introductiontoasp netwindbgdebugging-100506045407-phpapp01
 
Bots on guard of sdlc
Bots on guard of sdlcBots on guard of sdlc
Bots on guard of sdlc
 
Liferay portals in real projects
Liferay portals in real projectsLiferay portals in real projects
Liferay portals in real projects
 
IDE and Toolset For Magento Development
IDE and Toolset For Magento DevelopmentIDE and Toolset For Magento Development
IDE and Toolset For Magento Development
 
Java script best practices v4
Java script best practices v4Java script best practices v4
Java script best practices v4
 
Algorithm,Pseudocode,Flowchart.pptx
Algorithm,Pseudocode,Flowchart.pptxAlgorithm,Pseudocode,Flowchart.pptx
Algorithm,Pseudocode,Flowchart.pptx
 
PRG/215 ENTIRE CLASS UOP TUTORIALS
PRG/215 ENTIRE CLASS UOP TUTORIALSPRG/215 ENTIRE CLASS UOP TUTORIALS
PRG/215 ENTIRE CLASS UOP TUTORIALS
 
Ad109 - XPages Performance and Scalability
Ad109 - XPages Performance and ScalabilityAd109 - XPages Performance and Scalability
Ad109 - XPages Performance and Scalability
 
What is the best approach to tdd
What is the best approach to tddWhat is the best approach to tdd
What is the best approach to tdd
 
Sdlc
SdlcSdlc
Sdlc
 
Java Chapter 2 Overview.ppt
Java Chapter 2 Overview.pptJava Chapter 2 Overview.ppt
Java Chapter 2 Overview.ppt
 

Recently uploaded

Chemistry 4th semester series (krishna).pdf
Chemistry 4th semester series (krishna).pdfChemistry 4th semester series (krishna).pdf
Chemistry 4th semester series (krishna).pdfSumit Kumar yadav
 
Spermiogenesis or Spermateleosis or metamorphosis of spermatid
Spermiogenesis or Spermateleosis or metamorphosis of spermatidSpermiogenesis or Spermateleosis or metamorphosis of spermatid
Spermiogenesis or Spermateleosis or metamorphosis of spermatidSarthak Sekhar Mondal
 
Botany 4th semester file By Sumit Kumar yadav.pdf
Botany 4th semester file By Sumit Kumar yadav.pdfBotany 4th semester file By Sumit Kumar yadav.pdf
Botany 4th semester file By Sumit Kumar yadav.pdfSumit Kumar yadav
 
Orientation, design and principles of polyhouse
Orientation, design and principles of polyhouseOrientation, design and principles of polyhouse
Orientation, design and principles of polyhousejana861314
 
Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |
Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |
Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |aasikanpl
 
Grafana in space: Monitoring Japan's SLIM moon lander in real time
Grafana in space: Monitoring Japan's SLIM moon lander in real timeGrafana in space: Monitoring Japan's SLIM moon lander in real time
Grafana in space: Monitoring Japan's SLIM moon lander in real timeSatoshi NAKAHIRA
 
Presentation Vikram Lander by Vedansh Gupta.pptx
Presentation Vikram Lander by Vedansh Gupta.pptxPresentation Vikram Lander by Vedansh Gupta.pptx
Presentation Vikram Lander by Vedansh Gupta.pptxgindu3009
 
GFP in rDNA Technology (Biotechnology).pptx
GFP in rDNA Technology (Biotechnology).pptxGFP in rDNA Technology (Biotechnology).pptx
GFP in rDNA Technology (Biotechnology).pptxAleenaTreesaSaji
 
Recombinant DNA technology (Immunological screening)
Recombinant DNA technology (Immunological screening)Recombinant DNA technology (Immunological screening)
Recombinant DNA technology (Immunological screening)PraveenaKalaiselvan1
 
STERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCE
STERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCESTERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCE
STERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCEPRINCE C P
 
Is RISC-V ready for HPC workload? Maybe?
Is RISC-V ready for HPC workload? Maybe?Is RISC-V ready for HPC workload? Maybe?
Is RISC-V ready for HPC workload? Maybe?Patrick Diehl
 
Formation of low mass protostars and their circumstellar disks
Formation of low mass protostars and their circumstellar disksFormation of low mass protostars and their circumstellar disks
Formation of low mass protostars and their circumstellar disksSérgio Sacani
 
SOLUBLE PATTERN RECOGNITION RECEPTORS.pptx
SOLUBLE PATTERN RECOGNITION RECEPTORS.pptxSOLUBLE PATTERN RECOGNITION RECEPTORS.pptx
SOLUBLE PATTERN RECOGNITION RECEPTORS.pptxkessiyaTpeter
 
Green chemistry and Sustainable development.pptx
Green chemistry and Sustainable development.pptxGreen chemistry and Sustainable development.pptx
Green chemistry and Sustainable development.pptxRajatChauhan518211
 
Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...
Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...
Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...Sérgio Sacani
 
Bentham & Hooker's Classification. along with the merits and demerits of the ...
Bentham & Hooker's Classification. along with the merits and demerits of the ...Bentham & Hooker's Classification. along with the merits and demerits of the ...
Bentham & Hooker's Classification. along with the merits and demerits of the ...Nistarini College, Purulia (W.B) India
 
Labelling Requirements and Label Claims for Dietary Supplements and Recommend...
Labelling Requirements and Label Claims for Dietary Supplements and Recommend...Labelling Requirements and Label Claims for Dietary Supplements and Recommend...
Labelling Requirements and Label Claims for Dietary Supplements and Recommend...Lokesh Kothari
 

Recently uploaded (20)

Chemistry 4th semester series (krishna).pdf
Chemistry 4th semester series (krishna).pdfChemistry 4th semester series (krishna).pdf
Chemistry 4th semester series (krishna).pdf
 
Spermiogenesis or Spermateleosis or metamorphosis of spermatid
Spermiogenesis or Spermateleosis or metamorphosis of spermatidSpermiogenesis or Spermateleosis or metamorphosis of spermatid
Spermiogenesis or Spermateleosis or metamorphosis of spermatid
 
Botany 4th semester file By Sumit Kumar yadav.pdf
Botany 4th semester file By Sumit Kumar yadav.pdfBotany 4th semester file By Sumit Kumar yadav.pdf
Botany 4th semester file By Sumit Kumar yadav.pdf
 
Orientation, design and principles of polyhouse
Orientation, design and principles of polyhouseOrientation, design and principles of polyhouse
Orientation, design and principles of polyhouse
 
Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |
Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |
Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |
 
9953056974 Young Call Girls In Mahavir enclave Indian Quality Escort service
9953056974 Young Call Girls In Mahavir enclave Indian Quality Escort service9953056974 Young Call Girls In Mahavir enclave Indian Quality Escort service
9953056974 Young Call Girls In Mahavir enclave Indian Quality Escort service
 
Grafana in space: Monitoring Japan's SLIM moon lander in real time
Grafana in space: Monitoring Japan's SLIM moon lander in real timeGrafana in space: Monitoring Japan's SLIM moon lander in real time
Grafana in space: Monitoring Japan's SLIM moon lander in real time
 
Presentation Vikram Lander by Vedansh Gupta.pptx
Presentation Vikram Lander by Vedansh Gupta.pptxPresentation Vikram Lander by Vedansh Gupta.pptx
Presentation Vikram Lander by Vedansh Gupta.pptx
 
GFP in rDNA Technology (Biotechnology).pptx
GFP in rDNA Technology (Biotechnology).pptxGFP in rDNA Technology (Biotechnology).pptx
GFP in rDNA Technology (Biotechnology).pptx
 
Recombinant DNA technology (Immunological screening)
Recombinant DNA technology (Immunological screening)Recombinant DNA technology (Immunological screening)
Recombinant DNA technology (Immunological screening)
 
STERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCE
STERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCESTERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCE
STERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCE
 
Is RISC-V ready for HPC workload? Maybe?
Is RISC-V ready for HPC workload? Maybe?Is RISC-V ready for HPC workload? Maybe?
Is RISC-V ready for HPC workload? Maybe?
 
Formation of low mass protostars and their circumstellar disks
Formation of low mass protostars and their circumstellar disksFormation of low mass protostars and their circumstellar disks
Formation of low mass protostars and their circumstellar disks
 
Engler and Prantl system of classification in plant taxonomy
Engler and Prantl system of classification in plant taxonomyEngler and Prantl system of classification in plant taxonomy
Engler and Prantl system of classification in plant taxonomy
 
SOLUBLE PATTERN RECOGNITION RECEPTORS.pptx
SOLUBLE PATTERN RECOGNITION RECEPTORS.pptxSOLUBLE PATTERN RECOGNITION RECEPTORS.pptx
SOLUBLE PATTERN RECOGNITION RECEPTORS.pptx
 
Green chemistry and Sustainable development.pptx
Green chemistry and Sustainable development.pptxGreen chemistry and Sustainable development.pptx
Green chemistry and Sustainable development.pptx
 
Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...
Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...
Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...
 
Bentham & Hooker's Classification. along with the merits and demerits of the ...
Bentham & Hooker's Classification. along with the merits and demerits of the ...Bentham & Hooker's Classification. along with the merits and demerits of the ...
Bentham & Hooker's Classification. along with the merits and demerits of the ...
 
Labelling Requirements and Label Claims for Dietary Supplements and Recommend...
Labelling Requirements and Label Claims for Dietary Supplements and Recommend...Labelling Requirements and Label Claims for Dietary Supplements and Recommend...
Labelling Requirements and Label Claims for Dietary Supplements and Recommend...
 
The Philosophy of Science
The Philosophy of ScienceThe Philosophy of Science
The Philosophy of Science
 

FuzzyDebugger.pdf

  • 1. FuzzyDbg 1 / 12 Department of Computer Science & Engineering Amrita School of Engineering Amrita Vishwa Vidyapeetham Name Roll No Ritvik Tanksalkar AM.EN.U4CSE18148 Sandhra Bino AM.EN.U4CSE18049 Vivek Kamisetty AM.EN.U4CSE18061 Vishnu Madhav AM.EN.U4CSE18144 Guide Vipin Pavithran
  • 2. 2 / 12 ➔ Problem Definition ➔ Problem Description ➔ Block Diagram ➔ Module Description OUTLINE
  • 3. Problem Statement 3 / 12 Generic debuggers like GDB don’t have functionalities like viewing call graphs generated and an efficient fuzzing functionality. Fuzzing is the most advanced and fastest way to find bugs in software. This project aims to build a simple and fast debugger with an implementation of graph view and fuzzing functionality.
  • 4. In our implementation, the tool would let the user debug and test their binary using the fuzzing engine. The end product would include a generic interface with the debugger, dump program state, stack, memory maps, registers etc. An automated mutation engine would generate input logs and crash logs along with a backtrace at the instance of a crash. 4 / 12 Problem Description
  • 6. Block Diagram - Debugger
  • 7. Our implementation of the debugger has the following features: ➔ Attach to running process ➔ Set breakpoints and delete them ➔ View registers Stages of Implementation
  • 8. Stages of Implementation ➔ Debugger Attach to a process ◆ Fork and execve the target process ◆ Get address of entryPoint from elf header. ◆ Use ptrace to Set breakpoint at entryPoint. ◆ Continue execution and handle to user. ➔ Debugger Context ◆ Register values at every instruction
  • 9. 9 / 12 Stages of Implementation ➔ Debugger Breakpoints ◆ Set breakpoint at a given address ◆ Use of a breakpoint structure table to save original address values. ◆ Await for events in the traced process. ◆ Handle events like Signals, termination conditions etc.
  • 10. 10 / 12 The WIP project implementation consists of a Command line based debugger divided into the following major modules: ➔ FuzzyDbg ◆ The main debugger interface ◆ Handles commands given by user ◆ Reads the elf-header for future use. ➔ fdb-utils ◆ Implementation of debugger helper functions like parsing inputs. ◆ Functionality to get and set register values from traced process. Modules
  • 11. 11 / 12 Module Description ➔ Breakpoints ◆ Functionality to set and delete breakpoints. ◆ Patching the required instruction with xcc debugger interrupt. ◆ Saving the patched address along with the original address into a breakpoint structure. ◆ Use this to repatch the address back to original state. ➔ Elf-utils ◆ Functionality to parse elf header. ◆ Useful to find information like entryPoint. ◆ Also helps in detecting if binary is dynamic executable , whether it is Position Independent or not (PIE). ◆ Provides functionality to efficiently print out the elf header in an order.
  • 12. 12 / 12 Module Description ➔ Context ◆ The main debugger interface ◆ Handles commands given by user ➔ Attach ◆ Implementation of attach functionality ◆ Responsible for forking the debugger and tracing the child process ◆ Execve the target process and trace it with parent. ◆ Handle events that occur in child with every functionality
  • 14. Test Binaries ➔ Basic testing with test binaries ◆ Binaries can be dynamic or static executables. ◆ Binaries can be position dependent or not.
  • 15. Performance Metrics This unique implementation of a combination of debugger and Fuzz tester has multiple variable for performance: ● The fuzzer efficiency result wrt number of faults found within the test/debuggee application. ● Also corner cases and test cases of types of binaries that can work smoothly on this fuzzer
  • 18. Major Project milestones Modules to be completed Expected Deadlines 18 / 12 Future Work
  • 19. The full completed project is a Debugger with added support to fuzz test the binary or process loaded to the debugger using a Radamsa based mutation generation engine. The current implementation is complete in its first phase having the basic features of a debugger. The modules currently under WIP status are : ● Making debugger more robust and full of features. ● Graph View of the disassembly for easier visual static analysis and ● Radamsa Integration for fuzzing the test binary passed as argument to the debugger. Modules to be Completed
  • 20. Expected date to be Completed The expected date of Completion for the Project is estimated to be around April 2022 along with the Paper publication and submission for CFP at a major conference for acceptance.