source: zzuf/trunk/README @ 1525

Last change on this file since 1525 was 1525, checked in by Sam Hocevar, 14 years ago
  • Change -i/-e to -I/-E.
  • Property svn:keywords set to Id
File size: 1.5 KB
Line 
1$Id: README 1525 2006-12-29 16:46:06Z sam $
2
31. About Zzuf
4
5Zzuf is a transparent application input fuzzer. It works by intercepting
6file operations and changing random bits in the program's input. Zzuf's
7behaviour is deterministic, making it easy to reproduce bugs.
8
9
102. Example
11
12Fuzz the input of the "cat" program using default settings:
13
14  # zzuf cat /etc/motd
15
16Fuzz 1% of the input bits of the "cat" program using seed 94324:
17
18  # zzuf -s 94324 -r 0.01 cat /etc/motd
19
20Fuzz the input of the "convert" program, using file foo.jpeg as the original
21input and restricting fuzzing to filenames matching the regular expression
22"foo[.]jpeg" (because convert will also open its own configuration files and
23we do not want zzuf to fuzz them):
24
25  # zzuf -I 'foo[.]jpeg' convert -- foo.jpeg -format tga /dev/null
26
27Fuzz the input of VLC, using file movie.avi as the original input, and
28generate fuzzy-movie.avi which is a file that can be fed to VLC to reproduce
29the behaviour without using zzuf:
30
31  # zzuf -s 87423 -r 0.01 vlc movie.avi
32
33  # zzuf -s 87423 -r 0.01 cp movie.avi fuzzy-movie.avi
34  # vlc fuzzy-movie.avi
35
36Fuzz mplayer's input with seeds 0 to 9999 and kill processes that take more
37than one minute to read the movie file:
38
39  # zzuf -q -s 0:10000 -T 60 -r 0.02 -I movie.avi \
40         mplayer movie.avi -- -benchmark -vo null -fps 1000
41
42Same as above with up to 15 simultaneous child processes because we are
43playing a sound file:
44
45  # zzuf -F 15 -q -s 0:10000 -T 60 -r 0.02 -I song.mp3 \
46         mplayer song.mp3 -- -benchmark -ao null
47
Note: See TracBrowser for help on using the repository browser.