Skip to content

RiS3-Lab/p2im-real_firmware

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
CNC
CNC
 
 
Console
Console
 
 
Drone
Drone
 
 
Gateway
Gateway
 
 
Heat_Press
Heat_Press
 
 
PLC
PLC
 
 
Reflow_Oven
Reflow_Oven
 
 
Robot
Robot
 
 
Steering_Control
Steering_Control
 
 
binary
binary
 
 
deps/arduino-cli
deps/arduino-cli
 
 
.gitignore
.gitignore
 
 
LICENSE.md
LICENSE.md
 
 
README.md
README.md
 
 

Repository files navigation

This is the repo for all real-world firmware fuzz-tested in P2IM paper.

Fuzzing firmware with P2IM paper

Please follow the instructions here. You can either use the pre-compiled firmware binary in binary/, or compile the firmware by yourself.

Compiling firmware

Setup the compiler toolchain following these instructions.

For Arduino-based firmware, you need to set up the Arduino development environment:

  1. Download the Arduino core, and untar it to ~/.arduino15

  2. Download the library that firmware rely on, and untar it to ~/Arduino

Now you are ready to compile firmware. Please follow the instructions in README.md under each directory.

aflCall

All firmware invoke aflCall, as explained here. In QEMU, aflCall is intercepted and does not change firmware state. However, it may crash the firmware on real device. To disable aflCall, simply set noHyperCall variable to 1 on source code, or replace all svc $0x3f instructions by NOP on binary.

TODO

I am still cleaning Soldering_Iron firmware.

About

Real firmware fuzz-tested in P2IM paper

Topics

p2im

Resources

Readme

License

View license
Activity
Custom properties

Stars

22 stars

Watchers

7 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages