Skip to content

v0.1.6 -- Lots of Tweaks & Fixes
Compare
Choose a tag to compare
@SR4ven SR4ven released this 09 Dec 16:03
· 196 commits to master since this release
v0.1.6
46d9de1
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

v0.1.6

Features

  • New primitive s_bytes which fuzzes an arbitrary length binary value (similiar to s_string).
  • We are now using Black for code style standardization.
  • Compatibility for Python 3.8
  • Added crc32c as checksum algorithm (Castagnoli).
  • Added favicon for web interface.
  • Pushed Tornado to 5.x and unpinned Flask.

Fixes

  • Test cases were not being properly closed when using the check_message() functionality.
  • Some code style changes to meet PEP8.
  • s_group primitive was not accepting empty default value.
  • Timeout during opening TCP connection now raises BoofuzzTargetConnectionFailedError exception.
  • SSL/TLS works again. See examples/fuzz-ssl-server.py and examples/fuzz-ssl-client.py.
  • Dropped six.binary_type in favor of b"" format.
  • Fixed process monitor handling of backslashes in Windows start commands.
  • Fixed and documented boo open.
  • Fixed receive function in fuzz_logger_curses.
  • Installing boofuzz with sudo is no longer recommended, use the --user option of pip instead.
  • Fixed setting socket timeout options on Windows.
  • If all sockets are exhausted, repeatedly try fuzzing for 4 minutes before failing.
  • Fixed CSV logger send and receive data decoding.
  • Handle SSL-related exception. Added ignore_connection_ssl_errors session attribute that can
    be set to True to ignore SSL-related error on a test case.
  • Fixed s_from_file decoding in Python 2 (the encoding parameter is now depreciated).
  • Updated documentation of s_checksum. It is possible to use a custom algorithm with this block.
Assets 2
Loading