Going Beyond Coverage-Guided Fuzzing with Structured Fuzzing

Sdílet
Vložit
  • čas přidán 28. 08. 2024
  • Coverage-guided fuzzers like AFL and libFuzzer have led to a "fuzzing renaissance". This is because they made it possible for security researchers to write effective fuzzers for formats without knowing about the format's structure. However, structure-aware (aka structured) fuzzing is far from dead. In fact, the combination of structured and coverage-guided (aka coverage) fuzzing has quietly become the state of the art in automated vulnerability discovery.
    By Jonathan Metzman
    Full Abstract & Presentation Materials: www.blackhat.c...

Komentáře •

Další v pořadí
Automatické přehrávání
37C3 - Fuzz Everything, Everywhere, All at Once40:4337C3 - Fuzz Everything, Everywhere, All at Once
37C3 - Fuzz Everything, Everywhere, All at Oncemedia.ccc.de
zhlédnutí 9K
Fuzzing: Runtime Bug Hunting | Synopsys21:40Fuzzing: Runtime Bug Hunting | Synopsys
Fuzzing: Runtime Bug Hunting | SynopsysSynopsys
zhlédnutí 13K
Inside the Apple T245:14Inside the Apple T2
Inside the Apple T2Black Hat
zhlédnutí 13K
English or Spanish 🤣00:16English or Spanish 🤣
English or Spanish 🤣GL Show
zhlédnutí 8M
Lee a jeho progress 👏🦁👏 JanKanurek.cz 🫡 #thisiskurñalife #zabilcz #freerunning #trampoline00:32Lee a jeho progress 👏🦁👏 JanKanurek.cz 🫡 #thisiskurñalife #zabilcz #freerunning #trampoline
Lee a jeho progress 👏🦁👏 JanKanurek.cz 🫡 #thisiskurñalife #zabilcz #freerunning #trampolineJan Kanurek
zhlédnutí 2,8M
Incredible Dog Rescues Kittens from Bus - Inspiring Story #shorts00:18Incredible Dog Rescues Kittens from Bus - Inspiring Story #shorts
Incredible Dog Rescues Kittens from Bus - Inspiring Story #shortsFabiosa Best Lifehacks
zhlédnutí 28M
Pouštíme si TRAPNÉ PÍSNIČKY na VEŘEJNÝCH MÍSTECH 201:01Pouštíme si TRAPNÉ PÍSNIČKY na VEŘEJNÝCH MÍSTECH 2
Pouštíme si TRAPNÉ PÍSNIČKY na VEŘEJNÝCH MÍSTECH 2MaTTem
zhlédnutí 326K
OffensiveCon19 - Samuel Groß - FuzzIL: Guided Fuzzing for JavaScript Engines27:42OffensiveCon19 - Samuel Groß - FuzzIL: Guided Fuzzing for JavaScript Engines
OffensiveCon19 - Samuel Groß - FuzzIL: Guided Fuzzing for JavaScript EnginesOffensiveCon
zhlédnutí 5K
Ghidra - Journey from Classified NSA Tool to Open Source47:36Ghidra - Journey from Classified NSA Tool to Open Source
Ghidra - Journey from Classified NSA Tool to Open SourceBlack Hat
zhlédnutí 74K
Fuzzing with AFL - Erlend Oftedal45:02Fuzzing with AFL - Erlend Oftedal
Fuzzing with AFL - Erlend OftedalNDC Conferences
zhlédnutí 27K
Fuzzing XSS Sanitizers for Fun and Profit | Tom Anthony29:19Fuzzing XSS Sanitizers for Fun and Profit | Tom Anthony
Fuzzing XSS Sanitizers for Fun and Profit | Tom AnthonyHackerOne
zhlédnutí 9K
Securing the System: A Deep Dive into Reversing Android Pre-Installed Apps47:49Securing the System: A Deep Dive into Reversing Android Pre-Installed Apps
Securing the System: A Deep Dive into Reversing Android Pre-Installed AppsBlack Hat
zhlédnutí 10K
Fuzzing 10141:19Fuzzing 101
Fuzzing 101BlinkOn
zhlédnutí 5K
Finding The .webp Vulnerability in 8s (Fuzzing with AFL++)24:11Finding The .webp Vulnerability in 8s (Fuzzing with AFL++)
Finding The .webp Vulnerability in 8s (Fuzzing with AFL++)LiveOverflow
zhlédnutí 59K
Maksim Shudrak - How To Improve Coverage Guided Fuzzing Find New 0days - DEF CON 27 Conference40:30Maksim Shudrak - How To Improve Coverage Guided Fuzzing Find New 0days - DEF CON 27 Conference
Maksim Shudrak - How To Improve Coverage Guided Fuzzing Find New 0days - DEF CON 27 ConferenceDEFCONConference
zhlédnutí 4,3K
ClusterFuzz: Fuzzing at Google Scale59:38ClusterFuzz: Fuzzing at Google Scale
ClusterFuzz: Fuzzing at Google ScaleBlack Hat
zhlédnutí 7K
Get 10 Mega Boxes OR 60 Starr Drops!!01:39Get 10 Mega Boxes OR 60 Starr Drops!!
Get 10 Mega Boxes OR 60 Starr Drops!!Brawl Stars
zhlédnutí 19M
WILL IT BURST?00:31WILL IT BURST?
WILL IT BURST?Natan por Aí
zhlédnutí 29M
Ondřej Novotný - GELNÁROVÁ JE HODNÁ HOLKA, TRILOGII VYHRAJE KARLOS,PRODALI JSME 17.000 LÍSTKŮ ZA DEN1:30:59Ondřej Novotný - GELNÁROVÁ JE HODNÁ HOLKA, TRILOGII VYHRAJE KARLOS,PRODALI JSME 17.000 LÍSTKŮ ZA DEN
Ondřej Novotný - GELNÁROVÁ JE HODNÁ HOLKA, TRILOGII VYHRAJE KARLOS,PRODALI JSME 17.000 LÍSTKŮ ZA DENVláďa Kadlec - EXPERIENCE
zhlédnutí 190K
Little Girl LOSES IT when she messes up ESPRESSO RIFF w/ Vocal Coach!!!00:34Little Girl LOSES IT when she messes up ESPRESSO RIFF w/ Vocal Coach!!!
Little Girl LOSES IT when she messes up ESPRESSO RIFF w/ Vocal Coach!!!Cheryl Porter Vocal Coach
zhlédnutí 13M
아이스크림으로 진짜 친구 구별하는법00:17아이스크림으로 진짜 친구 구별하는법
아이스크림으로 진짜 친구 구별하는법진영민yeongmin
zhlédnutí 22M
ZPOVĚĎ POLICISTY: "Mrtvoly skoro každý den, jednou s námi komunikoval muž s ustřelenou půlkou hlavy"2:00:50ZPOVĚĎ POLICISTY: "Mrtvoly skoro každý den, jednou s námi komunikoval muž s ustřelenou půlkou hlavy"
ZPOVĚĎ POLICISTY: "Mrtvoly skoro každý den, jednou s námi komunikoval muž s ustřelenou půlkou hlavy"STN_videos
zhlédnutí 236K
Sabrina Carpenter - Taste (Official Video)03:19Sabrina Carpenter - Taste (Official Video)
Sabrina Carpenter - Taste (Official Video)SabrinaCarpenterVEVO
zhlédnutí 35M
女孩妒忌小丑女? #小丑#shorts00:34女孩妒忌小丑女? #小丑#shorts
女孩妒忌小丑女? #小丑#shorts好人小丑
zhlédnutí 85M