clif is a command-line interface (CLI) application fuzzer, pretty much what wfuzz or ffuf are for web. It was inspired by sudo vulnerability CVE-2021-3156 and the fact that for some reasons, Google's afl-fuzz doesn't allow for unlimited argument or option specification.
# clif
`clif` is a command-line interface (CLI) application fuzzer, pretty much what `wfuzz` or `ffuf` are for web. It was inspired by `sudo` vulnerability `CVE-2021-3156` and the fact that for some reasons, Google's `afl-fuzz` doesn't allow for unlimited argument or option specification.
# Usage
```bash
clif -e <executable> [-w <wordlist>, -n <number_range> -s <string_range>] -a "args_with_marks"
-e - executable
-w - wordlist
-a - arguments as string
-n - number range
-s - list of strings of 'A' a defined length range
```
# Example
```bash
# throw wordlist.txt as input
clif -e my_program -w wordlist.txt
# throw wordlist.txt as -p argument
clif -e my_program -w wordlist.txt -a "-p FUZZ"
# throw numbers from range 100..100000000 as the first argument
clif -e my_program -n 100..100000000 -a "-n FUZZ"
# throw a string with length from range 10..100 as the first argument
clif -e my_program -s 10..100
```
# Demo
In this demo, CLIF is used to fuzz an application that is vulnerable to BOF when processing its input arguments - if the argument is longer than 10 characters, the application crashes.
[4.0K] /data/pocs/babe21dacb503d12f5d1ad50dcf4d03dfe500ce8
├── [ 13K] Cargo.lock
├── [ 540] Cargo.toml
├── [ 864] figlet.txt
├── [ 34K] LICENSE
├── [1.2K] README.md
├── [4.0K] src
│ ├── [4.0K] args
│ │ ├── [1.3K] args.rs
│ │ └── [ 35] mod.rs
│ ├── [4.0K] fuzzer
│ │ ├── [5.4K] fuzzer.rs
│ │ └── [ 36] mod.rs
│ ├── [3.6K] lib.rs
│ └── [ 210] main.rs
└── [4.0K] testdata
├── [ 371] bof.c
└── [ 18] wordlist.txt
4 directories, 13 files