MOpt-AFL provided by the paper "MOPT: Optimized Mutation Scheduling for Fuzzers" https://github.com/puppet-meteor/MOpt-AFL #fuzzing #dukeBarman
GitHub
GitHub - puppet-meteor/MOpt-AFL: MOpt-AFL provided by the paper "MOPT: Optimized Mutation Scheduling for Fuzzers"
MOpt-AFL provided by the paper "MOPT: Optimized Mutation Scheduling for Fuzzers" - puppet-meteor/MOpt-AFL
BaseSAFE: Baseband SAnitized Fuzzing through Emulation Article: https://arxiv.org/pdf/2005.07797.pdf Source: https://github.com/fgsect/BaseSAFE #fuzzing #dukeBarman
USBFuzz: A Framework for Fuzzing USB Drivers by Device Emulation https://nebelwelt.net/publications/files/20SEC3.pdf #fuzzing #dukeBarman
FI(le) SY(stem) - full file system fuzzing framework
Source: https://github.com/0xricksanchez/fisy-fuzz
Video from HITB 2020: https://www.youtube.com/watch?v=VNzKVOsn5qQ&feature=youtu.be&t=17032
Materials: https://github.com/0xricksanchez/HITB2020_FSFUZZER
#fuzzing #dukeBarman
Source: https://github.com/0xricksanchez/fisy-fuzz
Video from HITB 2020: https://www.youtube.com/watch?v=VNzKVOsn5qQ&feature=youtu.be&t=17032
Materials: https://github.com/0xricksanchez/HITB2020_FSFUZZER
#fuzzing #dukeBarman
GitHub
GitHub - 0xricksanchez/fisy-fuzz: This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown…
This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April. - 0xricksanchez/fisy-fuzz
gramfuzz is a grammar-based fuzzer that lets one define complex grammars to generate text and binary data formats.
Official site: https://d0c-s4vage.github.io/gramfuzz/
Source: https://github.com/d0c-s4vage/gramfuzz
#fuzzing #dukeBarman
Official site: https://d0c-s4vage.github.io/gramfuzz/
Source: https://github.com/d0c-s4vage/gramfuzz
#fuzzing #dukeBarman
GitHub
GitHub - d0c-s4vage/gramfuzz: gramfuzz is a grammar-based fuzzer that lets one define complex grammars to generate text and binary…
gramfuzz is a grammar-based fuzzer that lets one define complex grammars to generate text and binary data formats. - d0c-s4vage/gramfuzz
Symbolic execution with SYMCC http://www.s3.eurecom.fr/tools/symbolic_execution/symcc.html
Article: http://www.s3.eurecom.fr/docs/usenixsec20_symcc.pdf
Source: https://github.com/eurecom-s3/symcc
#reverse #fuzzing #dukeBarman
Article: http://www.s3.eurecom.fr/docs/usenixsec20_symcc.pdf
Source: https://github.com/eurecom-s3/symcc
#reverse #fuzzing #dukeBarman
www.s3.eurecom.fr
SymCC | S3
The S3 Software and System Security Group @ EURECOM website.
FuZZan: Efficient Sanitizer Metadata Design for Fuzzing
Source: https://github.com/HexHive/FuZZan
Article: http://hexhive.epfl.ch/publications/files/20ATC.pdf
#fuzzing #dukeBarman
Source: https://github.com/HexHive/FuZZan
Article: http://hexhive.epfl.ch/publications/files/20ATC.pdf
#fuzzing #dukeBarman
GitHub
GitHub - HexHive/FuZZan: FuZZan: Efficient Sanitizer Metadata Design for Fuzzing
FuZZan: Efficient Sanitizer Metadata Design for Fuzzing - HexHive/FuZZan
MMS Exploit Part 1: Introduction to the Samsung Qmage Codec and Remote Attack Surface https://googleprojectzero.blogspot.com/2020/07/mms-exploit-part-1-introduction-to-qmage.html #fuzzing #exploitation #android #dukeBarman
Blogspot
MMS Exploit Part 1: Introduction to the Samsung Qmage Codec and Remote Attack Surface
Posted by Mateusz Jurczyk, Project Zero This post is the first of a multi-part series capturing my journey from discovering a vulnerable...
WEIZZ: Automatic Grey-Box Fuzzing for Structured Binary Formats
Slides: https://andreafioraldi.github.io/assets/weizz-issta2020-slides.pdf
Video: https://www.youtube.com/watch?v=MOeUqlFtgwE
Article: https://andreafioraldi.github.io/assets/weizz-issta2020.pdf
Code: https://github.com/andreafioraldi/weizz-fuzzer
#fuzzing #dukeBarman
Slides: https://andreafioraldi.github.io/assets/weizz-issta2020-slides.pdf
Video: https://www.youtube.com/watch?v=MOeUqlFtgwE
Article: https://andreafioraldi.github.io/assets/weizz-issta2020.pdf
Code: https://github.com/andreafioraldi/weizz-fuzzer
#fuzzing #dukeBarman
Fuzzing the Windows API for AV Evasion
https://winternl.com/fuzzing-the-windows-api-for-av-evasion/
#reverse #malware #fuzzing #win #Thatskriptkid
https://winternl.com/fuzzing-the-windows-api-for-av-evasion/
#reverse #malware #fuzzing #win #Thatskriptkid
winternl
Fuzzing the Windows API for AV Evasion
Malware Detection Systems (MDSs) use a technique called emulation as perhaps their most effective weapon against novel malware threats. Emulation does not rely on the static structure or signature of…
Fuzzing JavaScript Engines with Aspect-preserving Mutation
https://github.com/sslab-gatech/DIE
#reverse #expdev #fuzzing #javascript #darw1n
https://github.com/sslab-gatech/DIE
#reverse #expdev #fuzzing #javascript #darw1n
GitHub
GitHub - sslab-gatech/DIE: Fuzzing JavaScript Engines with Aspect-preserving Mutation
Fuzzing JavaScript Engines with Aspect-preserving Mutation - sslab-gatech/DIE
Storm - a blackbox mutational fuzzer for detecting critical bugs in SMT solvers Article: https://numairmansur.github.io/STORM.pdf Code: https://github.com/Practical-Formal-Methods/storm #fuzzing #dukeBarman
UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities https://github.com/strongcourage/uafuzz #fuzzing #dukeBarman
GitHub
GitHub - strongcourage/uafuzz: UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities
UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities - strongcourage/uafuzz
FuzzCon Europe 2020 - Fuzz Your Software https://www.youtube.com/playlist?list=PLI0R_0_8-TV4JArtdlgnuPtgXALZxAYqu #videos #conference #fuzzing #fuzzcon #dukeBarman
YouTube
FuzzCon Europe 2020 - Fuzz Your Software
This playlist includes all talks from FuzzConEurope 2020. For access to the slides, visit: https://www.fuzzcon.eu/sign-up-recording
Let’s build a high-performance fuzzer with GPUs! https://blog.trailofbits.com/2020/10/22/lets-build-a-high-performance-fuzzer-with-gpus/ #fuzzing #dukeBarman
The Trail of Bits Blog
Let’s build a high-performance fuzzer with GPUs!
TL;DR: Can we use GPUs to get 10x performance/dollar when fuzzing embedded software in the cloud? Based on our preliminary work, we think the answer is yes! Fuzzing is a software testing technique that supplies programs with many randomized inputs in an attempt…
WINNIE: Fuzzing Windows Applications with Harness Synthesis and Fast Cloning
Georgia Tech researchers released the source code of their WinAFL fork that uses a fork server through undocumented Windows APIs. They also include an intelligent harness generation tool with it. This results in a speedup of 26.6x, supporting 2.2x more binaries than WinAFL, and harnesses which require only a few LoC of change.
Paper: https://www.ndss-symposium.org/wp-content/uploads/ndss2021_6A-3_24334_paper.pdf
Video: https://www.youtube.com/watch?v=h7P65RJXd3c&list=PLfUWWM-POgQtbX-IfBwWlu-hQt2_f7vVK&index=4
Repo: https://github.com/sslab-gatech/winnie
#fuzzing #windows #gdynamics
Georgia Tech researchers released the source code of their WinAFL fork that uses a fork server through undocumented Windows APIs. They also include an intelligent harness generation tool with it. This results in a speedup of 26.6x, supporting 2.2x more binaries than WinAFL, and harnesses which require only a few LoC of change.
Paper: https://www.ndss-symposium.org/wp-content/uploads/ndss2021_6A-3_24334_paper.pdf
Video: https://www.youtube.com/watch?v=h7P65RJXd3c&list=PLfUWWM-POgQtbX-IfBwWlu-hQt2_f7vVK&index=4
Repo: https://github.com/sslab-gatech/winnie
#fuzzing #windows #gdynamics
FirmWire is a full-system baseband firmware emulation platform for fuzzing, debugging, and root-cause analysis of smartphone baseband firmwares
https://github.com/FirmWire/FirmWire
#fuzzing #mobile #firmware #android #Temporary17
https://github.com/FirmWire/FirmWire
#fuzzing #mobile #firmware #android #Temporary17
GitHub
GitHub - FirmWire/FirmWire: FirmWire is a full-system baseband firmware emulation platform for fuzzing, debugging, and root-cause…
FirmWire is a full-system baseband firmware emulation platform for fuzzing, debugging, and root-cause analysis of smartphone baseband firmwares - FirmWire/FirmWire
🔥16👍5😁1