CERT Basic Fuzzing Framework (BFF) Significant changes

BFF 2.7 (September 23, 2013)

Virtual Machine changes

Incorporated CERT Triage Tools 1.04 to determine exploitability of crashes found.
Integrated code improvements from FOE 2.0 release
BFF 2.6 and FOE 2.0.1 use the same certfuzz package
Improved fuzzing campaign recovery after VM reboot
Detect and abort minimization if it takes too long (> 1hr)
Fixed a bug in minimizer crash recycling
Various bug fixes and improved error handling

BFF now runs on OSX in addition to Linux
Support for multiple seed files
Crashes found during minimization get analyzed as well
Improved machine learning implementation applied to both seed file selection and rangefinder
Improved crash uniqueness determination on Linux
Minimizer tuned for performance
callgrind generated on unique crashers for code coverage analysis
default gdb output changed to provide additional details
Basic crash clustering (analysis/callsim.py) using callgrind coverage analysis
Optional minimization-to-string feature

Ported BFF from Perl to Python
Complete rewrite of crasher minimization using probability-based algorithm
Added 'rangefinder' capability to automatically discover optimal fuzzing probability range(s)
Restructured output directory (./crashers), now organized by crash hash
Added analyzer scripts for visualization & fuzz run analysis

Forcibly kill gdb
Removed unused tty information
Updated to save SIGABRT crashes, discarding those caused by failed. asserts. Failed asserts can be saved through config option.
Refactored perl script for increased performance and usability.
Added crasher minimization script