Skip to content

1. Install

Jump to bottom
Fernando Arnaboldi edited this page Apr 9, 2018 · 2 revisions

Follwing are the instructions on how to execute XDiFF in:

Linux (Ubuntu/Debian)

  1. Install some utilities as root:
apt update; apt -y install python2.7 gcc make git sqlite3 wget
  1. Download the latest copy of XDiFF:
git clone https://github.com/IOActive/XDiFF.git; cd XDiFF
  1. Install some input fuzzers (minimum 1gb of RAM required) as root:
git clone https://github.com/aoh/radamsa.git; cd radamsa; make OFLAGS=-O1; make install; cd ..; rm -r radamsa/
wget https://github.com/samhocevar/zzuf/releases/download/v0.15/zzuf-0.15.tar.bz2; tar -xf zzuf-0.15.tar.bz2; cd zzuf-0.15/; ./configure; make; make install; cd ..; rm -r zzuf-0.15.tar.bz2 zzuf-0.15/
  1. Create a ramdisk where files will be created as root:
mkdir /mnt/ramdisk; mount -t tmpfs -o size=512m tmpfs /mnt/ramdisk; echo "tmpfs /mnt/ramdisk tmpfs nodev,nosuid,noexec,nodiratime,size=512M 0 0" >> /etc/fstab
  1. Point the host canaryhost to localhost as root:
echo "127.0.0.1 canaryhost"|tee -a /etc/hosts
  1. Create the canarycommand:
echo '#!/bin/sh'>/usr/local/bin/canaryfile.bat; echo 'echo canarytokencommand'>>/usr/local/bin/canaryfile.bat; chmod +x /usr/local/bin/canaryfile.bat; cp /usr/local/bin/canaryfile.bat /usr/local/bin/canaryfile

OSX

  1. Install some utilities. The following utilies are installed using brew, if you don't have it you can install it by executing /usr/bin/ruby -e "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/master/install)":
brew install git wget
  1. Download the latest copy of XDiFF:
git clone https://github.com/IOActive/XDiFF.git; cd XDiFF
  1. Install some input fuzzers (minimum 1gb of RAM required):
git clone https://github.com/aoh/radamsa.git; cd radamsa; make OFLAGS=-O1; sudo cp bin/radamsa /usr/local/bin/; cd ..
wget https://github.com/samhocevar/zzuf/releases/download/v0.15/zzuf-0.15.tar.bz2; tar -xf zzuf-0.15.tar.bz2; cd zzuf-0.15/; ./configure; make; make install; cd ..; rm -r zzuf-0.15.tar.bz2 zzuf-0.15/
  1. Create a ramdisk where files will be created:
diskutil erasevolume HFS+ 'ramdisk' `hdiutil attach -nomount ram://838860`
  1. Point the host canaryhost to localhost:
echo "127.0.0.1       canaryhost"|sudo tee -a /etc/hosts
  1. Create the canarycommand:
echo '#!/bin/sh'>/usr/local/bin/canaryfile.bat; echo 'echo canarytokencommand'>>/usr/local/bin/canaryfile.bat; chmod +x /usr/local/bin/canaryfile.bat; cp /usr/local/bin/canaryfile.bat /usr/local/bin/canaryfile
  1. Raise the ulimit
ulimit -n 1024

Freebsd

  1. Install some utilities:
pkg install git wget py27-sqlite3
  1. Download the latest copy of XDiFF:
git clone https://github.com/IOActive/XDiFF.git; cd XDiFF
  1. Install some input fuzzers (minimum 1gb of RAM required):
git clone https://github.com/aoh/radamsa.git; cd radamsa; make OFLAGS=-O1; sudo make install; cd ..; rm -r radamsa/

Pending: Zzuf compile options

  1. Create a ramdisk where files will be created:
sudo mkdir /mnt/ramdisk; sudo mount -t tmpfs -o size=512m tmpfs /mnt/ramdisk; sudo echo "tmpfs /mnt/ramdisk tmpfs nodev,nosuid,noexec,nodiratime,size=512M 0 0" >> /etc/fstab
  1. Point the host canaryhost to localhost:
echo "127.0.0.1               canaryhost" | sudo tee -a /etc/hosts
  1. Create the canarycommand:
echo '#\!/bin/sh' > /usr/local/bin/canaryfile.bat ; echo 'echo canarytokencommand' >> /usr/local/bin/canaryfile.bat ; chmod +x /usr/local/bin/canaryfile.bat ; cp /usr/local/bin/canaryfile.bat /usr/local/bin/canaryfile

Windows

  1. Download and install some utilities:
Python 2.7: https://www.python.org/ftp/python/2.7.14/python-2.7.14.amd64.msi

IMDisk: https://sourceforge.net/projects/imdisk-toolkit/files/latest/download
  1. Download the latest copy of XDiFF:
https://github.com/IOActive/XDiFF/archive/master.zip
  1. Download some input fuzzers. For Radamsa, download and put within your PATH the .dll and the .exe:
https://github.com/vah13/radamsa/releases
  1. Create a ramdisk where files will be created:
imdisk -a -s 512M -m X: -p \"/fs:ntfs /q/y\"

Then, format the ram disk once the Windows pop up appears

  1. Point the host canaryhost to localhost. Right click on startup -> Command Prompt (Admin):
echo 127.0.0.1       canaryhost >> C:\Windows\System32\drivers\etc\hosts
  1. Create the canarycommand. Right click on startup -> Command Prompt (Admin):
echo @echo off > C:\Windows\System32\canaryfile.bat & echo.echo canarytokencommand >> C:\Windows\System32\canaryfile.bat

What's next?

You want to define the input

Home

  1. Install

  2. The input

  3. The software

  4. The fuzzer

  5. The output

Changelog

Clone this wiki locally