Appendix B - Fuzzing - Chrono's Cyber Chronicles

| Title | Author | Created | Published | Tags | | -------------------- | ---------------------------- | --------------- | --------------- | ---------------------------------------------------------------------------------------------------------------------------------- | | Appendix B - Fuzzing | <ul><li>Jon Marien</li></ul> | August 10, 2025 | August 10, 2025 | [[#skillsontario\|#skillsontario]], [[#competitions\|#competitions]], [[#certifications\|#certifications]], [[#classes\|#classes]] | # Task - Lab 12 **CyberQ Appendix B Lab (Fuzzing)** 1) Capture all flags 2) Complete the following exercises - Exercise 1: Fuzzing with zzuf - Exercise 3: Fuzzing with AFL - Exercise 4: Fuzzing with AFL and capstone - Exercise 5: Additional Capabilities of Address Sanitizer - Exercise 6: Fuzzing with Peach **Output/Report:** 1) Screenshot of finished lab score 2) Screen captures of the following steps from the CyberQ Lab Instructions document. - [Exercise 1: Fuzzing with zzuf (Step 22)](#Exercise%201%20Fuzzing%20with%20zzuf%20(Step%2022)) - [Exercise 3: Fuzzing with AFL (Step 28, 38)](#Exercise%203%20Fuzzing%20with%20AFL%20(Step%2028,%2038)) - [Exercise 4: Fuzzing with AFL and capstone (Step 19)](#Exercise%204%20Fuzzing%20with%20AFL%20and%20capstone%20(Step%2019)) - [Exercise 5: Additional Capabilities of Address Sanitizer (Step 6)](#Exercise%205%20Additional%20Capabilities%20of%20Address%20Sanitizer%20(Step%206)) - [Exercise 6: Fuzzing with Peach (Step 33, 34)](#Exercise%206%20Fuzzing%20with%20Peach%20(Step%2033,%2034)) Use the Lab Guide for preparing the report. --- # Exercise 1: Fuzzing with zzuf (Step 22) ### Step 22 ![[image-853.png]] > [!answer]- > ![[image-854.png]] > ![[image-856.png]] --- # Exercise 3: Fuzzing with AFL (Step 28, 38) ![[image-857.png]] ### Step 28 ![[image-858.png]] ### Step 38 ![[image-860.png]] ![[image-861.png]] ![[image-862.png]] Was failing to work, then I pre-pended `sudo` and it worked: ![[image-863.png]] > [!Answer]- > ![[image-864.png]] --- # Exercise 4: Fuzzing with AFL and capstone (Step 19) ![[image-865.png]] ### Step 19 ![[image-866.png]] ![[image-867.png]] WOW! Much faster processing speeds. From ~5K/s to ~55K/s! > [!Answer]- > ![[image-869.png]] > ![[image-870.png]] --- # Exercise 5: Additional Capabilities of Address Sanitizer (Step 6) ### Step 6 ![[image-871.png]] --- # Exercise 6: Fuzzing with Peach (Step 33, 34) ![[image-872.png]] ### Step 33 ![[image-873.png]] ![[image-874.png]] ### Step 34 ![[image-875.png]] ![[image-876.png]] ![[image-878.png]] --- All done!