You cannot post messages because only members can post, and you are not currently a member.
Description:
Peach is a cross-platform fuzzing framework written in Python. Peaches main goals include: short development time, code reuse, ease of use, flexability. Peach can fuzz just about anything from COM/ActiveX, SQL, shared libraries/DLL's, network applications, web, you name it.
|
|
|
Random Mutate Strategy
|
| |
Hi,
performing some tests with Blob mutators, I have noticed that only
the"sequencialMutation" method is called during the execution. I
suppose that it depends on the use of sequencial
mutator strategy as default. How can I use the random mutation
strategy?
Thanks,
Robgas
|
|
|
Peach 2.3.3 Released
|
| |
Lots of point releases last week or so. Hopefully this release will get rid of the msvcrt.dll pop-up issues. Also in this release: * Updated console display * Fixed bug with Flags and mutators * Fixed bug with Flags parsing wrong mike
|
|
|
Skipto
|
| |
Hi Michael,
I'm using the "--skipto" option so i could simulate a bug that i have
so i can debug it.
i know that its not a bug that before Peach skip to the test case it
run the none mutated test case and only then jumps to the wanted test
case.
but this causes issues, i know that the fuzzing is working well thats... more »
|
|
|
Peach 2.3.2
|
| |
I've just pushed up new installers for Peach 2.3.2. This version contains some changes to how debuggers are handled in Windows to resolve some issues several people ran into. Now instead of running the debugger in a thread we spawn off a full process. This fixes some stability issues found when performing file fuzzing of some targets.... more »
|
|
|
can peach output what it receive?
|
| |
hi mike
i am tring to output what peach recive from mysql,but fail in the end
can peach do that?
here is the pit file:
<?xml version="1.0" encoding="utf-8"?>
<Peach xmlns="[link]" xmlns:xsi="[link]
2001/XMLSchema-instance"
xsi:schemaLocation="[link] /peach/peach.xsd">... more »
|
|
|
Complex block length
|
| |
I'm trying to fuzz a proprietary container file format. Part of this
format includes a table of offsets to 'records' within the file. For
the purposes of my test, I'd like to treat each record (other than the
first) as essentially an opaque blob.
The problem I'm facing is that the length of each record is not... more »
|
|
|
TcpListener address in use error
|
| |
I'm using a tcp.TcpListener publisher on Ubuntu 8.10, and I commonly
get this error when running fuzzes back-to-back:
] Peach 2.3.2 DEV Runtime
] Copyright (c) Michael Eddington
[*] Starting run "DefaultRun"
[-] Test: "MyTest" (None)
[1:?:?] Running test with mutator N/A
TCP bind attempt failed: (98, 'Address already in use')... more »
|
|
|
Extending TcpListener publisher error.
|
| |
Hi,
I'm testing Peach 2.3.1 on a Ubuntu 9.04 linux box and I'd like to
create an HTTP server publisher starting from TcpListener. I've
created the following basic file httpserver.py in the folder
Peach_2.3.1/Peach/Publishers:
from tcp import TcpListener
class HttpServerBase(TcpListener):... more »
|
|
|
how to use fixup in mysql pit file?
|
| |
according to the mysql Protocol:
------------------------------ ------------------------------ --------
00038 The new authentication is performed in following manner:
00039
00040 SERVER: public_seed=create_random_stri ng()
00041 send(public_seed)
00042
00043 CLIENT: recv(public_seed)... more »
|
|
|
Patch for PingMonitor agent to run on Linux
|
| |
Hi,
According to [link], Linux needs some
changes to work. Here is a patch to make this change. I'm not sure
what your commit criteria is, so let me know if I need to do something
different.
Cheers,
Chris M.
Index: Peach/Agent/network.py
============================== ============================== =======... more »
|
|
|
|
