Prospector: Boosting Directed Grey-box Fuzzing for Large-scale Target Sets with Iterative Prioritization

ISSTA 2024 Artifact for Prospector: Boosting Directed Grey-box Fuzzing for Large-scale Target Sets with Iterative Prioritization.

Prospector is a directed greybox fuzzing for large-scale target sets, currently only supporting the targets set by Address Sanitizer(ASan). 

Prospector-artifact includes the following components:

• Prospector.tar.gz contains the source code of Prospector. The first version has a bug when fuzzing binary with small target sizes. You may use a stable version via the command ( git clone https://github.com/iskindar/Prospector.git ). 

  Note that this bug does not affect the results in the paper. This is because the bug only occurs in small binaries, and the vulnerabilities in these binaries were found by the fuzzer before it crashed due to the bug. That is why we failed to find this bug. Thanks to Yifan!

• artifact.tar.gz contains all the scripts and data to reproduce experiments in the paper. 
• README.md details 
  • how to setup Prospector
  • how to run an example usage
  • how to reproduce experimental results
  • how to expand the artifact

NOTE : If you want to build docker images for windranger, you need to change the first line of Dockerfile "from issta:base" to "from [MAIN_DOCKER_IMAGE]", where "MAIN_DOCKER_IMAGE" means the name of docker images built from the directory in "Docker-main". 

Alternatively, you can just pull the existing image from dockerhub by "docker pull iskindar/propspector-artifact:windranger" . 

Acknowledge

We greatly appreciate the artifacts from FishFuzz and DAFL. The Prospector-artifact has benefited significantly from these two works.

Contact

If you have any questions & find any bugs, feel free to contact me via iskindar97@gmail.com.