History

Andrea Fioraldi ce63b76558

Co-authored-by: Dominik Maier <domenukk@gmail.com>
Co-authored-by: Dongjia "toka" Zhang <tokazerkje@outlook.com>

2025-05-23 22:50:23 +02:00

.cargo

Pr/fasan multithreading fixes upstream (#2955 )

2025-02-14 13:45:38 +01:00

src

ScheduledMutator Fix with_max_stack_pow (#3148 )

2025-04-12 20:35:31 +02:00

.gitignore

Rename LibAFL_GdiPlus to _Windows_ (#2604 )

2024-10-11 10:52:39 +02:00

Cargo.lock

UPDATE LOCKFILE (#3267 )

2025-05-23 16:35:30 +02:00

Cargo.toml

Update to v0.15.3 (#3259 )

2025-05-23 22:50:23 +02:00

cmplog_test.asm

Rename LibAFL_GdiPlus to _Windows_ (#2604 )

2024-10-11 10:52:39 +02:00

cmplog_test.def

Rename LibAFL_GdiPlus to _Windows_ (#2604 )

2024-10-11 10:52:39 +02:00

corpus

Use symlink instead to get the corpus (#3177 )

2025-04-28 18:47:10 +02:00

harness.cc

Rename LibAFL_GdiPlus to _Windows_ (#2604 )

2024-10-11 10:52:39 +02:00

Justfile

Improve CI (#3258 )

2025-05-22 16:08:35 +02:00

README.md

Pr/fasan multithreading fixes upstream (#2955 )

2025-02-14 13:45:38 +01:00

README.md

LibAFL Frida_Windows_GdiPlus Example

This is a an example how to fuzz binary-only dlls on Windows. The example fuzzer will explore gdiplus on Windows, using the Frida DBI.

Build

To build this example, run cargo build --release in this folder.

Then compile the harness cl.exe /LD harness.cc /link /dll gdiplus.lib ole32.lib

Note: this fuzzer is statically linked with C runtime. This is achieved by specifying rustflags = ["-C", "target-feature=+crt-static"] in .cargo/config.toml. The static linking is necessary to avoid Asan function hooks to hook the calls from the fuzzer itself, as such self-hooking can eventually lead to deadlocks in internal Frida mechanisms.

Run

To run the example target\release\frida_windows_gdiplus.exe -H harness.dll -i corpus -o output --libs-to-instrument gdi32.dll --libs-to-instrument gdi32full.dll --libs-to-instrument gdiplus.dll --libs-to-instrument WindowsCodecs.dll --disable-excludes