Comments (3)
nhnghia
commented on May 18, 2024
Hi, maybe you know this file: https://github.com/Montimage/5Greplay/blob/dev/rules/8.fuzz-ngap-custom.xml
For now the supported attributes are very limited. The attributes' modification are done via https://github.com/Montimage/mmt-dpi/blob/proto-s1ap/src/mmt_mobile/proto_ngap.c#L196
from 5greplay.
AndreasSpateneder
commented on May 18, 2024
I went through both links and wasn't able to find update functionality for NAS. Is NAS fuzzing supported by 5Greplay?
Could the replace_data_at_protocol_id function be used to implement further fuzzing capabilities? If so, which protocols are currently supported by get_protocol_index_by_id?
from 5greplay.
nhnghia
commented on May 18, 2024
Is NAS fuzzing supported by 5Greplay?
Unfortunately it is not ready yet
Could the replace_data_at_protocol_id function be used to implement further fuzzing capabilities? If so, which protocols are currently supported by get_protocol_index_by_id?
replace_data_at_protocol_id basically replaces a segment of packet data by another one. Thus I can say that we can use it to implement a fuzzer. This implementation would be very simple for linear/simple protocols whose attributes can be accessed directly (without the need of decoding). For example, let's modify the embedded function of rule 5 to fuzz Ethernet protocol:
static void em_replace_sll_by_ethernet( const rule_info_t *rule, int verdict, uint64_t timestamp, uint64_t counter, const mmt_array_t * const trace ){
int i;
struct ethhdr {
unsigned char dst[6], src[6];
uint16_t h_proto;
} ethernet_data;
//fuzz source address attribute
for( i=0; i<6; i++)
ethernet_data.src[i] = random();
replace_data_at_protocol_id( PROTO_SLL, sizeof(ethernet_data), ethernet_data );
forward_packet();
//fuzz proto attribute
ethernet_data.proto = random();
replace_data_at_protocol_id( PROTO_SLL, sizeof(ethernet_data), ethernet_data );
forward_packet();
}For the complex protocols which require to decode and encode, such as NGAP or NAS_5G whose attributes are in Type-Length-Value, the implementation would be more complicated.
from 5greplay.
Related Issues (9)
- fatal error when compiling rules HOT 5
- Rule construction HOT 1
- info command shows type : Drop for forwarding rule HOT 1
- Packets are not forwarded HOT 2
- offline packet modification does not work HOT 2
- Support for PFCP protocol replay HOT 2
- Cannot Build From the Source HOT 2
- Issue in compiling the ruels HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from 5greplay.