Setting up a Sulley Fuzzing Framework on Windows 7.

18 Sep

So I have read all of these tutorials on installing Sulley and they’re all designed for this specific crazy setup or that unique unicorn of a computer.  Here’s my “Get to the F()King point and stop wasting my time “guide.

  • You’re going to want to add some junk to your windows “Path” environment variable.  This is how and what I added:
    • Click – Start menu, then Control Panel, then System(the icon), then Advanced System Variables, then Environment Variables, the in the “system variables” section scroll down to” Path”, highlight “Path”, click the  “edit…” button, paste the following to the end of the line (with out outside most quotes):
      • “;C:\Python27\;C:\Python27\scripts\;C:\MinGW\bin;”c:\Program Files\sliksvn\bin”;”

 

 

 

  • Install MinGW.
    • During default installation, check the box asking for the C++ compiler. Post installation – add the path of MinGW’s binaries (C:\MinGW\bin) to Windows’s “Path” environment variable.

 

  • Install  WinPcaP. Also download WinPcaP developer’s pack, as it is needed for the compilation of pcapy. extract this guy to your c:\   
    • it should read c:\WpdPack_4_1_2\blah\blah\  *adjust accordingly for version, mine was 4.1

 

  • Install Python 2.7  Post installation:
    • add “C:\Python27”  to Windows’s Path, if you haven’t

 

  • Install “libdasm” via subversion.  open a command prompt and copy and paste the following:
    • svn checkout http://libdasm.googlecode.com/svn/trunk/ libdasm-read-only
    • cd libdasm-read-only/pydasm
    • python setup.py build_ext -c mingw32
    • C:\MinGW\bin\gcc.exe -mno-cygwin -shared -s build\temp.win32-2.7\Release\..\libdasm.o build\temp.win32-2.7\Release\pydasm.o build\temp.win32-2.7\Release\..\pydasm.def -LC:\Python27\libs -LC:\Python27\PCbuild -lpython27 -lmsvcr90 -o build\lib.win32-2.7\pydasm.pyd
    • python setup.py install

 

  • Now install Pcapy.  http://oss.coresecurity.com/repo/pcapy-0.10.5.zip        Download, unzip and then type the following commands (just make sure it’s the right version number): 
    • python setup.py build_ext -c mingw32 -I “C:\WpdPack_4_1_2\WpdPack\Include” -L “C:\WpdPack_4_1_2\WpdPack\Lib”
    • python setup.py install

 

 

 

  • Now the test:
    • cd into the “sulley-read-only” directory and try the following command:
      • python network_monitor.py
    • your output should look similar to the following:
      • C:\Users\AGM1\sulley-read-only>python network_monitor.py
        ERR> USAGE: network_monitor.py
            <-d|–device DEVICE #>    device to sniff on (see list below)
            [-f|–filter PCAP FILTER] BPF filter string
            [-P|–log_path PATH]      log directory to store pcaps to
            [-l|–log_level LEVEL]    log level (default 1), increase for more verbosity    [–port PORT]             TCP port to bind this agent to

        Network Device List:
            [0] {B9AE53CE-E5DF-4065-A0CD-73ADDC2A6F3F}  192.168.1.18
        C:\Users\AGM1\sulley-read-only>

    • The key points here are that there is a “Network Device List:” with an IP on one of the NICs.

Well that’s all I did and it’s working for me.  Hope this points you in the right direction.

-RosinCore

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: