SlideShare a Scribd company logo

FuzzyDebugger.pdf

R
ritviktanksalkar1

This document outlines a project to build FuzzyDbg, a debugger with fuzzing functionality. It will allow debugging and testing binaries using a fuzzing engine. The implementation will include a generic debugger interface, program state dumping, and an automated mutation engine to generate input logs and crash logs. Key features will include attaching to processes, setting breakpoints, and viewing registers. Major modules will include the debugger interface, helper utilities, breakpoints, ELF parsing, context handling, and process attaching. The project aims to integrate fuzzing via Radamsa to generate test cases and find bugs in the debugged binaries.

Science
1 of 21
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
FuzzyDbg 1 / 12 Department of Computer Science & Engineering Amrita School of Engineering Amrita Vishwa Vidyapeetham Name Roll No Ritvik Tanksalkar AM.EN.U4CSE18148 Sandhra Bino AM.EN.U4CSE18049 Vivek Kamisetty AM.EN.U4CSE18061 Vishnu Madhav AM.EN.U4CSE18144 Guide Vipin Pavithran
2 / 12 ➔ Problem Definition ➔ Problem Description ➔ Block Diagram ➔ Module Description OUTLINE
Problem Statement 3 / 12 Generic debuggers like GDB don’t have functionalities like viewing call graphs generated and an efficient fuzzing functionality. Fuzzing is the most advanced and fastest way to find bugs in software. This project aims to build a simple and fast debugger with an implementation of graph view and fuzzing functionality.
In our implementation, the tool would let the user debug and test their binary using the fuzzing engine. The end product would include a generic interface with the debugger, dump program state, stack, memory maps, registers etc. An automated mutation engine would generate input logs and crash logs along with a backtrace at the instance of a crash. 4 / 12 Problem Description
Block Diagram - fdb
Block Diagram - Debugger
Our implementation of the debugger has the following features: ➔ Attach to running process ➔ Set breakpoints and delete them ➔ View registers Stages of Implementation
Stages of Implementation ➔ Debugger Attach to a process ◆ Fork and execve the target process ◆ Get address of entryPoint from elf header. ◆ Use ptrace to Set breakpoint at entryPoint. ◆ Continue execution and handle to user. ➔ Debugger Context ◆ Register values at every instruction
9 / 12 Stages of Implementation ➔ Debugger Breakpoints ◆ Set breakpoint at a given address ◆ Use of a breakpoint structure table to save original address values. ◆ Await for events in the traced process. ◆ Handle events like Signals, termination conditions etc.
10 / 12 The WIP project implementation consists of a Command line based debugger divided into the following major modules: ➔ FuzzyDbg ◆ The main debugger interface ◆ Handles commands given by user ◆ Reads the elf-header for future use. ➔ fdb-utils ◆ Implementation of debugger helper functions like parsing inputs. ◆ Functionality to get and set register values from traced process. Modules
11 / 12 Module Description ➔ Breakpoints ◆ Functionality to set and delete breakpoints. ◆ Patching the required instruction with xcc debugger interrupt. ◆ Saving the patched address along with the original address into a breakpoint structure. ◆ Use this to repatch the address back to original state. ➔ Elf-utils ◆ Functionality to parse elf header. ◆ Useful to find information like entryPoint. ◆ Also helps in detecting if binary is dynamic executable , whether it is Position Independent or not (PIE). ◆ Provides functionality to efficiently print out the elf header in an order.
12 / 12 Module Description ➔ Context ◆ The main debugger interface ◆ Handles commands given by user ➔ Attach ◆ Implementation of attach functionality ◆ Responsible for forking the debugger and tracing the child process ◆ Execve the target process and trace it with parent. ◆ Handle events that occur in child with every functionality
Test binaries Performance Metrics Results 13 / 12 Experimental
Test Binaries ➔ Basic testing with test binaries ◆ Binaries can be dynamic or static executables. ◆ Binaries can be position dependent or not.
Performance Metrics This unique implementation of a combination of debugger and Fuzz tester has multiple variable for performance: ● The fuzzer efficiency result wrt number of faults found within the test/debuggee application. ● Also corner cases and test cases of types of binaries that can work smoothly on this fuzzer
Results
Results
Major Project milestones Modules to be completed Expected Deadlines 18 / 12 Future Work
The full completed project is a Debugger with added support to fuzz test the binary or process loaded to the debugger using a Radamsa based mutation generation engine. The current implementation is complete in its first phase having the basic features of a debugger. The modules currently under WIP status are : ● Making debugger more robust and full of features. ● Graph View of the disassembly for easier visual static analysis and ● Radamsa Integration for fuzzing the test binary passed as argument to the debugger. Modules to be Completed
Expected date to be Completed The expected date of Completion for the Project is estimated to be around April 2022 along with the Paper publication and submission for CFP at a major conference for acceptance.
Thank You

More Related Content

PDF
FuzzyDbg_Report.pdf
ritviktanksalkar1
 
PDF
Fuzzing - Part 2
UTD Computer Security Group
 
PDF
Fuzzing - Part 1
UTD Computer Security Group
 
PDF
Fuzzing softwares for bugs - OWASP Seasides
OWASPSeasides
 
PPT
PHP - Introduction to PHP Bugs - Debugging
Vibrant Technologies & Computers
 
PPTX
BSides LV 2016 - Beyond the tip of the iceberg - fuzzing binary protocols for...
Alexandre Moneger
 
PDF
Fuzzing: The New Unit Testing
Dmitry Vyukov
 
PPTX
Blaze Information Security: Slaying bugs and improving software security thro...
Blaze Information Security
 
FuzzyDbg_Report.pdf
ritviktanksalkar1
 
Fuzzing - Part 2
UTD Computer Security Group
 
Fuzzing - Part 1
UTD Computer Security Group
 
Fuzzing softwares for bugs - OWASP Seasides
OWASPSeasides
 
PHP - Introduction to PHP Bugs - Debugging
Vibrant Technologies & Computers
 
BSides LV 2016 - Beyond the tip of the iceberg - fuzzing binary protocols for...
Alexandre Moneger
 
Fuzzing: The New Unit Testing
Dmitry Vyukov
 
Blaze Information Security: Slaying bugs and improving software security thro...
Blaze Information Security
 

Similar to FuzzyDebugger.pdf (20)

PDF
FUZZING & SOFTWARE SECURITY TESTING
MuH4f1Z
 
PPTX
NBTC#2 - Why instrumentation is cooler then ice
Alexandre Moneger
 
PPTX
Ss debuggers
sweety enit
 
PDF
Fuzzing underestimated method of finding hidden bugs
Pawel Rzepa
 
PPT
myslide6
Sandeep Putrevu
 
PPT
myslide1
Sandeep Putrevu
 
PPT
NewSeriesSlideShare
Sandeep Putrevu
 
PDF
Appsec obfuscator reloaded
Cyber Security Alliance
 
PPTX
C# Production Debugging Made Easy
Alon Fliess
 
PPT
nullcon 2010 - Intelligent debugging and in memory fuzzing
n|u - The Open Security Community
 
PPT
debugging (1).ppt
jerlinS1
 
PPT
An important characteristic of a test suite that is computed by a dynamic ana...
jeyasrig
 
ODP
Preventing Complexity in Game Programming
Yaser Zhian
 
PPTX
Binary Analysis - Luxembourg
Abhik Roychoudhury
 
PDF
Make static instrumentation great again, High performance fuzzing for Windows...
Lucas Leong
 
PDF
Distributed Fuzzing Framework Design
bannedit
 
PPTX
Principles in software debugging
Pipat Methavanitpong
 
PPT
gdb-debug analysis and commnds on gcc.ppt
MaheshBabuD1
 
PPTX
Debugging multiplayer games
Maciej Siniło
 
PPTX
Driver Debugging Basics
Bala Subra
 
FUZZING & SOFTWARE SECURITY TESTING
MuH4f1Z
 
NBTC#2 - Why instrumentation is cooler then ice
Alexandre Moneger
 
Ss debuggers
sweety enit
 
Fuzzing underestimated method of finding hidden bugs
Pawel Rzepa
 
myslide6
Sandeep Putrevu
 
myslide1
Sandeep Putrevu
 
NewSeriesSlideShare
Sandeep Putrevu
 
Appsec obfuscator reloaded
Cyber Security Alliance
 
C# Production Debugging Made Easy
Alon Fliess
 
nullcon 2010 - Intelligent debugging and in memory fuzzing
n|u - The Open Security Community
 
debugging (1).ppt
jerlinS1
 
An important characteristic of a test suite that is computed by a dynamic ana...
jeyasrig
 
Preventing Complexity in Game Programming
Yaser Zhian
 
Binary Analysis - Luxembourg
Abhik Roychoudhury
 
Make static instrumentation great again, High performance fuzzing for Windows...
Lucas Leong
 
Distributed Fuzzing Framework Design
bannedit
 
Principles in software debugging
Pipat Methavanitpong
 
gdb-debug analysis and commnds on gcc.ppt
MaheshBabuD1
 
Debugging multiplayer games
Maciej Siniło
 
Driver Debugging Basics
Bala Subra
 

Recently uploaded (20)

PPTX
Derivatives of integument scales, beaks, horns,.pptx
Dr Showkat Ahmad Wani
 
PPTX
INTRODUCTION TO EVS | Concept of sustainability
manumaddy15198
 
PPTX
Comparative Structure of Integument in Vertebrates.pptx
Dr Showkat Ahmad Wani
 
PDF
The scientific heritage No 166 (166) (2025)
The scientific heritage
 
PPT
The World of Physical Science, • Labs: Safety Simulation, Measurement Practice
joybejerano
 
PDF
VARICELLA VACCINATION: A POTENTIAL STRATEGY FOR PREVENTING MULTIPLE SCLEROSIS
ijab2
 
PDF
ELS_Q1_Module-11_Formation-of-Rock-Layers_v2.pdf
savannaesar07
 
PPTX
Protein & Amino Acid Structures Levels of protein structure (primary, seconda...
Muhammad Sajid Afridi
 
PPTX
BIOMOLECULES PPT........................
vachieagrawal1221
 
PPTX
G5Q1W8 PPT SCIENCE.pptx 2025-2026 GRADE 5
Rodel Gordzkie
 
PPTX
The KM-GBF monitoring framework – status & key messages.pptx
pensoftservices
 
PDF
Mastering Bioreactors and Media Sterilization: A Complete Guide to Sterile Fe...
Sabina Sharma
 
PPTX
Microbiology with diagram medical studies .pptx
mohammedabbusiddiq
 
PPTX
cpcsea ppt.pptxssssssssssssssjjdjdndndddd
amolpawasesng123
 
PPTX
Introduction to Cardiovascular system_structure and functions-1
muralinath2
 
PDF
SEHH2274 Organic Chemistry Notes 1 Structure and Bonding.pdf
ivan1108lau
 
PPT
protein biochemistry.ppt for university classes
bayewodajo27
 
PDF
CAPERS-LRD-z9:AGas-enshroudedLittleRedDotHostingaBroad-lineActive GalacticNuc...
Sérgio Sacani
 
PDF
Phytochemical Investigation of Miliusa longipes.pdf
IrfanShahirSharafi
 
PDF
bbec55_b34400a7914c42429908233dbd381773.pdf
agambirev
 
Derivatives of integument scales, beaks, horns,.pptx
Dr Showkat Ahmad Wani
 
INTRODUCTION TO EVS | Concept of sustainability
manumaddy15198
 
Comparative Structure of Integument in Vertebrates.pptx
Dr Showkat Ahmad Wani
 
The scientific heritage No 166 (166) (2025)
The scientific heritage
 
The World of Physical Science, • Labs: Safety Simulation, Measurement Practice
joybejerano
 
VARICELLA VACCINATION: A POTENTIAL STRATEGY FOR PREVENTING MULTIPLE SCLEROSIS
ijab2
 
ELS_Q1_Module-11_Formation-of-Rock-Layers_v2.pdf
savannaesar07
 
Protein & Amino Acid Structures Levels of protein structure (primary, seconda...
Muhammad Sajid Afridi
 
BIOMOLECULES PPT........................
vachieagrawal1221
 
G5Q1W8 PPT SCIENCE.pptx 2025-2026 GRADE 5
Rodel Gordzkie
 
The KM-GBF monitoring framework – status & key messages.pptx
pensoftservices
 
Mastering Bioreactors and Media Sterilization: A Complete Guide to Sterile Fe...
Sabina Sharma
 
Microbiology with diagram medical studies .pptx
mohammedabbusiddiq
 
cpcsea ppt.pptxssssssssssssssjjdjdndndddd
amolpawasesng123
 
Introduction to Cardiovascular system_structure and functions-1
muralinath2
 
SEHH2274 Organic Chemistry Notes 1 Structure and Bonding.pdf
ivan1108lau
 
protein biochemistry.ppt for university classes
bayewodajo27
 
CAPERS-LRD-z9:AGas-enshroudedLittleRedDotHostingaBroad-lineActive GalacticNuc...
Sérgio Sacani
 
Phytochemical Investigation of Miliusa longipes.pdf
IrfanShahirSharafi
 
bbec55_b34400a7914c42429908233dbd381773.pdf
agambirev
 

FuzzyDebugger.pdf

  • 1. FuzzyDbg 1 / 12 Department of Computer Science & Engineering Amrita School of Engineering Amrita Vishwa Vidyapeetham Name Roll No Ritvik Tanksalkar AM.EN.U4CSE18148 Sandhra Bino AM.EN.U4CSE18049 Vivek Kamisetty AM.EN.U4CSE18061 Vishnu Madhav AM.EN.U4CSE18144 Guide Vipin Pavithran
  • 2. 2 / 12 ➔ Problem Definition ➔ Problem Description ➔ Block Diagram ➔ Module Description OUTLINE
  • 3. Problem Statement 3 / 12 Generic debuggers like GDB don’t have functionalities like viewing call graphs generated and an efficient fuzzing functionality. Fuzzing is the most advanced and fastest way to find bugs in software. This project aims to build a simple and fast debugger with an implementation of graph view and fuzzing functionality.
  • 4. In our implementation, the tool would let the user debug and test their binary using the fuzzing engine. The end product would include a generic interface with the debugger, dump program state, stack, memory maps, registers etc. An automated mutation engine would generate input logs and crash logs along with a backtrace at the instance of a crash. 4 / 12 Problem Description
  • 6. Block Diagram - Debugger
  • 7. Our implementation of the debugger has the following features: ➔ Attach to running process ➔ Set breakpoints and delete them ➔ View registers Stages of Implementation
  • 8. Stages of Implementation ➔ Debugger Attach to a process ◆ Fork and execve the target process ◆ Get address of entryPoint from elf header. ◆ Use ptrace to Set breakpoint at entryPoint. ◆ Continue execution and handle to user. ➔ Debugger Context ◆ Register values at every instruction
  • 9. 9 / 12 Stages of Implementation ➔ Debugger Breakpoints ◆ Set breakpoint at a given address ◆ Use of a breakpoint structure table to save original address values. ◆ Await for events in the traced process. ◆ Handle events like Signals, termination conditions etc.
  • 10. 10 / 12 The WIP project implementation consists of a Command line based debugger divided into the following major modules: ➔ FuzzyDbg ◆ The main debugger interface ◆ Handles commands given by user ◆ Reads the elf-header for future use. ➔ fdb-utils ◆ Implementation of debugger helper functions like parsing inputs. ◆ Functionality to get and set register values from traced process. Modules
  • 11. 11 / 12 Module Description ➔ Breakpoints ◆ Functionality to set and delete breakpoints. ◆ Patching the required instruction with xcc debugger interrupt. ◆ Saving the patched address along with the original address into a breakpoint structure. ◆ Use this to repatch the address back to original state. ➔ Elf-utils ◆ Functionality to parse elf header. ◆ Useful to find information like entryPoint. ◆ Also helps in detecting if binary is dynamic executable , whether it is Position Independent or not (PIE). ◆ Provides functionality to efficiently print out the elf header in an order.
  • 12. 12 / 12 Module Description ➔ Context ◆ The main debugger interface ◆ Handles commands given by user ➔ Attach ◆ Implementation of attach functionality ◆ Responsible for forking the debugger and tracing the child process ◆ Execve the target process and trace it with parent. ◆ Handle events that occur in child with every functionality
  • 14. Test Binaries ➔ Basic testing with test binaries ◆ Binaries can be dynamic or static executables. ◆ Binaries can be position dependent or not.
  • 15. Performance Metrics This unique implementation of a combination of debugger and Fuzz tester has multiple variable for performance: ● The fuzzer efficiency result wrt number of faults found within the test/debuggee application. ● Also corner cases and test cases of types of binaries that can work smoothly on this fuzzer
  • 18. Major Project milestones Modules to be completed Expected Deadlines 18 / 12 Future Work
  • 19. The full completed project is a Debugger with added support to fuzz test the binary or process loaded to the debugger using a Radamsa based mutation generation engine. The current implementation is complete in its first phase having the basic features of a debugger. The modules currently under WIP status are : ● Making debugger more robust and full of features. ● Graph View of the disassembly for easier visual static analysis and ● Radamsa Integration for fuzzing the test binary passed as argument to the debugger. Modules to be Completed
  • 20. Expected date to be Completed The expected date of Completion for the Project is estimated to be around April 2022 along with the Paper publication and submission for CFP at a major conference for acceptance.