Skip to content

FooB4r/CrowHttp

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

86 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

CrowHttp

What it is suppose to do: Finding bugs in http implementations such as cohttp and httpaf.

Principle

Http simple grammar using Crowbar

Use me

Install - Dependencies

You'll need the right compiler with +afl. -> ocaml-variants.4.05.0+afl

You'll need to use the latest version for Crowbar and Httpaf, the ones on opam are outdated.

opam install crowbar
opam pin add crowbar git://github.com/stedolan/crowbar.git

opam install httpaf
opam pin add httpaf git://github.com/inhabitedtype/httpaf

How to

  1. Compile the source
jbuilder build main.exe
  1. Launch the tests
  • Simple execution, without AFL _build/default/main.exe
  • With AFL afl-fuzz -i test/input -o output _build/default/main.exe @@
  • With Parallel AFL using tmux scripts/AFL_tmux.sh
  • https://github.com/yomimono/ocaml-bun - Not tested (TODO)

Objective

Use it on:

=> Find messages that are not supported. Compare the output to find bugs.

About

cohttp fuzzer using Crowbar + AFL

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published