5725123, 047 AM Homework Inteligent fuz2ing
Homework: Intelligent fuzzing
[sevsssoner ]
Due Jun4by 11:59pm Points 100 Submitting afile upload —_File Types pdf
Introduction
OK, so we looked at the approach scapy takes with fuzz(). But what if we don't want to
fuzz the networking layers themselves, but rather the application running on top of it.
What you must do
1. Here (https://canvas.oregonstate.edu/courses/1915163/files/982¢ lownload?wrap=1) J,
(https://canvas.oregonstate.edu/courses/1915163/files/98268608/download?download_frd=1) is a
server binary, Put it on your VM, and run it.
2. Determine what port its listening on. I'd suggest a tool like netstat would be useful here.
3, This is a fairly simple echo server. Send it data until you can make it do something undesired!
Specifically in this case you're looking for an information leak. Something that comes back that you
didn't send, for instance.
OK, so what do you send it? Well, it's a C program, so the input length is fixed. You'll want to send
successively longer strings until it does what you want. Keep in mind with ASLR, the length may be
different each time for an info leak.
Resources
You may want to take a look at this page > (https://0xbharath.github.io/art-of-packet-crafting-with-
scapylindex.html) for some helpful guidance.
Netcat may come in handy as well, if you don't want to write your own socket code.
What to turn in
You will be submitting a PDF write-up of what you did, and how you did it. This should include details
of how you generate your input, how you send it, how you determined where to send it, etc.
Submission is via Canvas.
Grading criteria
Grammar, spelling, and flow of your will be considered. Please make very clear what you did and how
you did it. As is usual in industry, being able to explain what you did and how you did it is as (or more)
tps canvas oregonstale.edulcourses/1918183/assignments/9195114%module_llem_ja=23079421 an5725123, 047 AM Homework Inteligent fuz2ing
important than actually doing it. Ultimately you do it so that you can relate it to your peers
tps canvas oregonstale.edulcourses/1918183/assignments/9195114%module_llem_ja=23079421 2