Strona główna Odkrywaj Pomoc
Zaloguj się
torambo.com
/
Momentum-Apps
2
0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Drzewo: b3236278d9
Gałęzie Tagi
Momentum-Apps
/
crypto
/
fuzzer
/
extract_fuzzer_dictionary.sh

extract_fuzzer_dictionary.sh 2.2 KB
Historia Czysty

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849 
  1. #!/usr/bin/env bash
    2. 

  2. 

  3. # usage: script.sh target-dictionary-filename
    4. 

  4. 

  5. # This script searches for interesting strings in the source code and converts
    6. 

  6. # them into a standard fuzzer dictionary file.
    7. 

  7. #
    8. 

  8. # Note that this script is phased out in favor of the more sophisticated
    9. 

  9. # extract_fuzzer_dictionary.py program
    10. 

  10. 

  11. # TODO known issues: the end result has some duplicates in it
    12. 

  12. 

  13. TARGET_DIR=../tests
    14. 

  14. OUTPUT_FILE=${1:-fuzzer_crypto_tests_strings_dictionary1.txt}
    15. 

  15. 

  16. multiline_string_search() {
    17. 

  17.   # TODO the `find` regex behavior is Linux-specific
    18. 

  18.   find $TARGET_DIR -type f -regextype posix-extended -regex '.*\.(c|h|py|json|java|js)' | xargs cat | perl -p0e 's/"\s*\n\s*\"//smg'
    19. 

  19. }
    20. 

  20. 

  21. # ensure empty file
    22. 

  22. echo -n "" > $OUTPUT_FILE
    23. 

  23. 

  24. # strip multiline strings and extract them
    25. 

  25. # exclude some hex strings, but allow hex strings with mixed capitalization (Ethereum, rskip60)
    26. 

  26. multiline_string_search | grep -P -o  "\"[\w ]+\"" | grep -v -P "\"(([0-9a-f][0-9a-f])+|([0-9A-F][0-9A-F])+)\"" | sort | uniq | while read -r line ; do
    27. 

  27.   echo "$line" >> $OUTPUT_FILE
    28. 

  28. done
    29. 

  29. 

  30. # extract individual BIP39 and SLIP39 words
    31. 

  31. # TODO are those actually valuable as fuzzer dictionary input?
    32. 

  32. # grep -r -P -o -h "\"\w+\""  ../slip39_wordlist.h ../bip39_english.h | sort | uniq >> fuzzer_crypto_tests_strings_dictionary1.txt
    33. 

  33. 

  34. # extract and convert binary input data from the unit tests
    35. 

  35. # find each file, cat it, concatenate multiline strings, look for hex strings in quotes
    36. 

  36. # note that this returns multiple megabyte of result strings due to the large amount
    37. 

  37. # of test cases in the wycheproof project subfolder
    38. 

  38. multiline_string_search | grep -P -o "\"([0-9a-fA-F][0-9a-fA-F])+\"" | grep -P -o "([0-9a-fA-F][0-9a-fA-F])+" | sort | uniq | while read -r line ; do
    39. 

  39.   # turn ascii hex strings AA into \xaa for the fuzzer format and add quotes
    40. 

  40.   # extra backslash escape due to the bash nesting
    41. 

  41.   escaped_hex=`echo $line | sed -e 's/../\\\\x&/g'`
    42. 

  42.   echo "\"$escaped_hex\"" >> $OUTPUT_FILE
    43. 

  43. done
    44. 

  44. 

  45. # search and reassemble BIP39 test seeds that span multiple lines
    46. 

  46. # find each file, cat it, concatenate multiline strings, look for BIP39 seed combinations with reasonable length
    47. 

  47. multiline_string_search | grep -Po "(\w{3,10} ){11,23}(\w{3,10})" | sort | uniq | while read -r line ; do
    48. 

  48.   echo "\"$line\"" >> $OUTPUT_FILE
    49. 

  49. done
    50.