Introduction

This document describes a number of common fuzzing scenarios and how Peach can be used in each.  Some of these scenarios are simple and others are more complex and include multiple machines or VMs.

·         Fuzzing COM object

·         Simple file fuzzing

·         Fuzzing kernel drivers

·         Fuzzing multi tiered system

·         Fuzzing multi tiered multi-OS system

 

 

Fuzzing Single Tier Systems

The following slide shows a common Peach configuration for fuzzing of single tier systems.

 

 

 

Fuzzing Two Tier Systems

The following slide shows a common Peach configuration for fuzzing of two tier systems.  Notice that it is similar to the single tier system just with an additional Peach Agent added into the mix.

 

 

 

Fuzzing Three Tier Systems

The following slide shows a common Peach configuration for fuzzing of three tier systems.  Notice that it is similar to the two tier system with an additional Peach Agent added into the mix.

 

 

 

 

Kernel Fuzzing Type #1

This slide shows the basic Peach setup for fuzzing of kernels.  The downside of this configuration vs. the following type #2 configurations is any fault will suspend fuzzing.

 

 

 

Kernel Fuzzing Type #2

This slide shows a more robust configuration that uses virtual machines (VM’s) to allow for recovery of the system to allow continued fuzzing.

 

 

 

File Fuzzing

This is the typical setup for file fuzzing using a special publisher that allows writing a file to disk and than running a program.