I am currently studying AFL of sorts, I notice that almost all the tutorial about networking fuzzing or protocol fuzzing is mainly testing the server instead of the client(I know that with -f parameter afl can test a client). I wonder if there are some reasons why people prefer to test server and do not test the client, will this cause insufficient test coverage?
Why do not fuzz client
98 Views Asked by Franklin Shen At
1
There are 1 best solutions below
Related Questions in NETWORKING
- How to avoid duplicates with the pull-based subscribe model?
- How to simulate CSMA/CD protocol in ns3?
- Network System - Cisco Packet Tracer
- Adhoc / mesh network not working (with and without batman-adv)
- Algorithm for finding a subset of nodes in a weighted connected graph such that the distance between any pair nodes are under a postive number?
- Python Client-Server Communication with Protocol
- I registered a service in eureka which is resolving through java code. But it is not able to resolve its name when hitting through chrome or postman
- Share files from the server without data or internet usage
- Player names not synchronizing in unity Mirror Networking
- My phone can not visit the server on macos in the same local network
- Unable to ping remote websites from an ipV6 only ubuntu ec2 Instance
- Linux Networking - Routing packets from one network interface to another
- wrong output from Supernetting algorithm
- Mapping localhost port on host to docker container
- Microsoft Message Analyzer disable resolving IP address to their domain names a.k.a turn off AutoIP feature
Related Questions in AMERICAN-FUZZY-LOP
- QEMU-AFL: follow fork() into child
- AFL++ (time out or crash)
- How to record each output during fuzzing?
- AFL only explores 1 path and nothing more! ( last new path : none yet (odd, check syntax!) )
- Why is AFL not catching a simple Memory error?
- Firmware AFL++ fuzzing fails
- AFL-Fuzz - Odd, Check Syntax! - How to add command line arguments to binary?
- AFL-fuzz not finding any crashes
- Modifying AFL to include a new variable for the Fuzzer to consider in seed selection
- AFL-GCC compiles differently than GCC
- AFL not taking input from Stdin
- How about Fuzzing a binary by reversing it to source code?
- Fuzz web application with AFL++ and record the error message
- Errors when using afl++
- Why afl-g++ can't compile ImageMagick?
Related Questions in FUZZ-TESTING
- Unable to use Jazzer due to compilation error
- Fuzz-testing Django application with atheris
- Microsoft REST-ler fuzzer - unable to use Proxy and Authentication token when doing fuzzy testing
- cifuzz/jazzer docker image missing a jar?
- How to write fuzz tests for List.partition function in ELM?
- statistical difference cata data
- How to effectively write a custom gremlin while using gremlins.js with Cypress?
- Why radamsa does not generate the requested number of testacases?
- When the crosshair command succeeds, has my contract been proven correct?
- Why Fuzz images?
- Why do not fuzz client
- Any recommendations on observing the signals (e.g. SIGSVE, SIGFPE, etc) of an FTP server?
- Can clang's libFuzzer test more than 1 API in the same binary?
- relation between random testing and fuzz testing
- Gremlins.js: ReferenceError: document is not defined
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
That's just an arbitrary choice in the tutorials. Fuzzing clients is just as important as fuzzing servers, and for example all web browsers are extensively fuzzed to identify flaws.
Depending on application though, attack surface may be very different between server and client. For some applications client only connects to trusted servers (ideally over encrypted & certificate-verified connection), while the servers are open for anyone to connect. But for other clients, such as web browsers, the server can be malicious also.