Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

TypeScript

F#

Haskell

Rust

Lua

Go

Assembly

R

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

C

Java

Lua

R

F#

Elixir

Erlang

Go

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇹🇷 Türkiye

🇵🇫 French Polynesia

🇸🇦 Saudi Arabia

🇬🇲 The Gambia

🇮🇳 India

🇧🇳 Brunei

🇹🇩 Chad

🇲🇶 Martinique

All Countries Compare Countries

fgsect/BaseSAFE

Stars
155
Rank 240,864 (Top 5 %)
Language
Dockerfile
License
GNU General Publi...
Created over 4 years ago
Updated over 3 years ago

fgsect

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Emulation and Feedback Fuzzing of Firmware with Memory Sanitization

BaseSAFE

This repository contains the BaseSAFE Rust APIs, introduced by "BaseSAFE: Baseband SAnitized Fuzzing through Emulation".

The example/ directory contains two harnesses emulating parts of the firmware for MediaTek’s Helio X10 (MT6795) baseband processor. _EMM_ demonstrates a crash inside the decoder for ATTACH/ACCEPT messages as part of the Mobility Management. _ERRC_ emulates various ASN.1 decoders which are being used for Radio Resource Control messages. Example inputs can be found inside the _data/_ directories.

Setup

Make AFL++ and build AFLplusplus/unicorn_mode.

./build_afl.sh

A single emulation run can be started by navigating into e.g. examples/errc and executing the harness on the provided data:

cd examples/errc/
cargo run data/pcch.raw

The emulated code can be fuzzed with AFL++ in Unicorn mode:

cd examples/errc
cargo build --release
../../AFLplusplus/afl-fuzz -U -i connections/ -o out/ -m none -- target/release/errc_fuzz @@

scat

SCAT: Signaling Collection and Analysis Tool

Python

344

unicorefuzz

Fuzzing the Kernel Using Unicornafl and AFL++

Python

294

FitM

FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulation. It's fast and comparably easy to set up.

278

fexm

Automated fuzzing framework

JavaScript

123

JMPscare

tool for multi-execution jump coverage introspection

Rust

NeoDiff

Differential fuzzing for Smart Contract VMs

Python

magicfern

Speedy Camera Fingerprinting Library

Jupyter Notebook

EM-Fault-It-Yourself

EM-Fault It Yourself: Building a Replicable EMFI Setup for Desktop and Server Hardware

profiling-attack-dilithium

C++

JMPscare-binja

Binary Ninja Plugin of JMPscare Toolkit

Python

FitM-qemu

QEMU Mode for the Fuzzer in the Middle

fgsect/BaseSAFE

fgsect

Reviews

Repository Details

BaseSAFE

Setup

More Repositories