Linux Target

This section features 2 targets:

• Damn Vulnerable Kernel Module (DVKM)

• Linux kernel boot sequence fuzzing

Too get started with kAFL, we recommend following the DVKM tutorial. This tutorial offers step-by-step explanations and covers foundational concepts for beginnners.

Note

The Linux kernel serves as an excellent candidate for fuzzing with kAFL for two key reasons:

1. Access to source code: inserting hypercalls at critical kernel locations is straightforward

2. Sanitizers available: the kernel can be compiled with (KASAN), significantly aiding in the identification of crash locations and faulty lines of code.

Fuzzing on Linux

• DVKM
  • 1 - Target analysis
  • 2 - kAFL workflow
  • 3 - Building the agent
  • 4 - Fuzzing campaign
  • 5 - Exploring campaign results
  • 6 - Improvements: KASAN
• Linux Kernel target
  • 1. Download patched Linux kernel (or port to your preferred kernel)
  • 2. Configure and build target kernel
  • 3. Start fuzzing!
  • 4. GUI
  • 5. Coverage
  • 6. Next Steps
  • 7) Known Issues