s_byte(0x0, format="oct", name="tp_pid",fuzzable=False) s_byte(0x04, format="oct", name="tp_dcs",fuzzable=False) if s_block_start("date"): s_byte(0x90, format="oct") s_byte(0x10, format="oct") s_byte(0x82, format="oct") s_byte(0x11, format="oct") s_byte(0x42, format="oct") s_byte(0x15, format="oct") s_byte(0x40, format="oct") s_block_end() if s_block_start("eight_bit"): s_size("message_eight", format="oct", length=1, math=lambda x: x / 2, fuzzable=True) if s_block_start("message_eight"): if s_block_start("text_eight", encoder=eight_bit_encoder): s_string("hellohello", max_len = 256) s_block_end() s_block_end() s_block_end() fuzz_file = session_file() fuzz_file.connect(s_get("query")) fuzz_file.fuzz() ft.cases2file(msg_pool,'sulley.cases')
start=1, stop=10, dcs=0x00, mid=-1, data=None, datalen=-134) cases = cases + random_order_multipart( start=1, stop=10, dcs=-1, mid=-1, data=None, datalen=-134) cases = cases + random_order_multipart( start=1, stop=50, dcs=0x00, mid=-1, data=None, datalen=134) cases = cases + random_order_multipart( start=1, stop=50, dcs=-1, mid=-1, data=None, datalen=134) cases = cases + random_order_multipart( start=1, stop=50, dcs=0x00, mid=-1, data=None, datalen=-134) cases = cases + random_order_multipart( start=1, stop=50, dcs=-1, mid=-1, data=None, datalen=-134) cases = cases + random_order_multipart( start=1, stop=130, dcs=0x00, mid=-1, data=None, datalen=134) cases = cases + random_order_multipart( start=1, stop=130, dcs=-1, mid=-1, data=None, datalen=134) cases = cases + random_order_multipart( start=1, stop=130, dcs=0x00, mid=-1, data=None, datalen=-134) cases = cases + random_order_multipart( start=1, stop=130, dcs=-1, mid=-1, data=None, datalen=-134) cases = cases + random_order_multipart( start=1, stop=256, dcs=0x00, mid=-1, data=None, datalen=134) cases = cases + random_order_multipart( start=1, stop=256, dcs=-1, mid=-1, data=None, datalen=134) cases = cases + random_order_multipart( start=1, stop=256, dcs=0x00, mid=-1, data=None, datalen=-134) cases = cases + random_order_multipart( start=1, stop=256, dcs=-1, mid=-1, data=None, datalen=-134) print len(cases) fuzzutils.cases2file(cases, "concat.cases")
tul = random.randrange(1, 132) if s.udg.leng + tul > 138: break tud = SMSFuzzData.getSMSFuzzData() s._udh = s._udh + tu + chr(tul) + tud[:tul] s._udh_leng = len(s._udh) if s._udh_leng > 138: break s._msg_leng = 139 - s._udh_leng if s._msg_leng > 0: s._msg.leng + random.randrange(int(s._msg.leng / 2), s._msg.leng) if s._msg.leng > 0: tud = SMSFuzzData.getSMSFuzzData() s._msg = tud[:s._msg_leng] else: s._msg_leng = 0 s.encode() return s._pdu if __name__ == "__main__": out = [] for i in range(0, int(sys.argv[1])): ts = Utils.hex2bin("9930251619580", 0) rnd = random.randrange(1, 10) msg = udhirandfuzz("4917787654321", "49177123456", ts, rnd) line = Utils.bin2hex(msg, 1) leng = (len(line) / 2) - 8 out.append((line, leng)) fuzzutils.cases2file(out, sys.argv[2])
cases = cases + simple_multipart(start = 1, stop = 255, dcs = -1, mid = -1, data = None, datalen = -134) cases = cases + simple_multipart(start = 1, stop = 255, dcs = -1, mid = -1, data = None, datalen = -134) print len(cases) # random index cases = cases + random_index_multipart(256, 0, dcs = 0x00, mid = -1, data = None, datalen = 134) cases = cases + random_index_multipart(256, 0, dcs = 0x00, mid = -1, data = None, datalen = -134) cases = cases + random_index_multipart(256, 0, dcs = -1, mid = -1, data = None, datalen = 134) cases = cases + random_index_multipart(256, 0, dcs = -1, mid = -1, data = None, datalen = -134) print len(cases) # random order index cases = cases + random_order_multipart(start = 1, stop = 10, dcs = 0x00, mid = -1, data = None, datalen = 134) cases = cases + random_order_multipart(start = 1, stop = 10, dcs = -1, mid = -1, data = None, datalen = 134) cases = cases + random_order_multipart(start = 1, stop = 10, dcs = 0x00, mid = -1, data = None, datalen = -134) cases = cases + random_order_multipart(start = 1, stop = 10, dcs = -1, mid = -1, data = None, datalen = -134) cases = cases + random_order_multipart(start = 1, stop = 50, dcs = 0x00, mid = -1, data = None, datalen = 134) cases = cases + random_order_multipart(start = 1, stop = 50, dcs = -1, mid = -1, data = None, datalen = 134) cases = cases + random_order_multipart(start = 1, stop = 50, dcs = 0x00, mid = -1, data = None, datalen = -134) cases = cases + random_order_multipart(start = 1, stop = 50, dcs = -1, mid = -1, data = None, datalen = -134) cases = cases + random_order_multipart(start = 1, stop = 130, dcs = 0x00, mid = -1, data = None, datalen = 134) cases = cases + random_order_multipart(start = 1, stop = 130, dcs = -1, mid = -1, data = None, datalen = 134) cases = cases + random_order_multipart(start = 1, stop = 130, dcs = 0x00, mid = -1, data = None, datalen = -134) cases = cases + random_order_multipart(start = 1, stop = 130, dcs = -1, mid = -1, data = None, datalen = -134) cases = cases + random_order_multipart(start = 1, stop = 256, dcs = 0x00, mid = -1, data = None, datalen = 134) cases = cases + random_order_multipart(start = 1, stop = 256, dcs = -1, mid = -1, data = None, datalen = 134) cases = cases + random_order_multipart(start = 1, stop = 256, dcs = 0x00, mid = -1, data = None, datalen = -134) cases = cases + random_order_multipart(start = 1, stop = 256, dcs = -1, mid = -1, data = None, datalen = -134) print len(cases) fuzzutils.cases2file(cases, "concat.cases")