Skip to content

Systems exploitation and fixes, along with AFL for fuzzing, lcov to measure coverage and Travis CI for regression testing

License

Notifications You must be signed in to change notification settings

aravindvaddi/systems-attacks-and-defences

Repository files navigation

Systems: Attacks and Defences

The following tasks were performed as part of an assignment for "Application Security" course at New York University

Git & Travis CI (Part 1)

  • Create an ssh key pair to perform actions from the command line
  • Create a GPG key pair to sign commits
  • Set up Travis to test your repository at each commit

Exploits (Part 2)

  • Create two input payloads that crash the program (Segmentation Fault), each crash has a different root cause
  • Create one input payload that hangs the program (Infinite Loop)
  • Write Bug.txt to explain the bugs triggered by each of the payloads
  • Fix the bugs and perform regression tests using Travis

Coverage and Fuzzing (Part 3)

  • Use lcov to perform a coverage test and see how much of the program is covered
  • Create testcases to increase coverage by two more lines
  • Fuzz the program using AFL
  • Use passing test cases generated by AFL to improve coverage of the program
  • Fix two fuzzer generated tests that crash the program
  • Perform regression tests using Travis CI
  • Brief write up explaining the above bugs that crashed the program

Please look at intructions for more details

About

Systems exploitation and fixes, along with AFL for fuzzing, lcov to measure coverage and Travis CI for regression testing

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published