| Pretraživanje | Osvježi |
|
MicrosVuln
@microsvuln
|
29. sij |
|
Fuzzing software: common challenges and potential solutions (Part 1) securitylab.github.com/research/fuzzi… #fuzzing #exploitation
|
||
|
|
||
|
ᴘᴀᴛʀɪᴄᴋ ᴠᴇɴᴛᴜᴢᴇʟᴏ
@Pat_Ventuzelo
|
30. sij |
|
🎉 New #fuzzing blogpost :)
Quick blogpost about how I found a OOM/DoS bug in a famous @npmjs/@nodejs package using coverage-guided #javascript fuzzer.
➡️ Fuzzer: Jsfuzz by @fuzzitdev
➡️ Target: wasm-parser
➡️ Bug: DoS/OOM
webassembly-security.com/fuzzing-npm-no…
#WeAssembly #js #wasm #NodeJS
|
||
|
|
||
|
44CON
@44CON
|
1. velj |
|
Fuzzing npm/nodejs WebAssembly parsing library with jsfuzz dlvr.it/RP9Jb0 #fuzzing #javascript pic.twitter.com/6OtUCcazko
|
||
|
||
|
IoT-PT
@mriotpt
|
2 h |
|
Released version1 OS for IoT devices pentesting
Plan for : V2 making packaging tools and script to install in your own virtual box image
#IoT #security #ble #bluetooth #firmware #fuzzing
github.com/IoT-PTv/IoT-PT
|
||
|
|
||
|
Linux Security Labs
@LSELabs
|
2 h |
|
Tool review: Wfuzz (web application fuzzer) by @deepbit @laramies @x4vi_mendez #analysis #fuzzing linuxsecurity.expert/tools/wfuzz/
|
||
|
|
||
|
omvapt
@omvapt
|
24 h |
|
|
||
|
Dhiraj
@RandomDhiraj
|
1. velj |
|
|
||
|
|
||
|
Arif Z
@AreRex14
|
1. velj |
|
How To Install and Use Radamsa to Fuzz Test Programs and Network Services on Ubuntu 18.04 digitalocean.com/community/tuto…
#fuzzing #ubuntu #security
|
||
|
|
||
|
zenrud
@ZenrudMB
|
31. sij |
|
|
||
|
|
||
|
catenacyber
@catenacyber
|
31. sij |
|
#fuzzing binutils (objdump, gdb, etc..) and sharing oss-fuzz bounty with @fsf to support these tools : #ThankGNU gnu.org/thankgnus/2020…
|
||
|
|
||
|
Alexandre Borges
@ale_sp_brazil
|
31. sij |
|
American Fuzzy Lop plus plus (afl++): afl++ is afl 2.56b with community patches, AFLfast power schedules, qemu 3.1 upgrade + laf-intel support, MOpt mutators, InsTrim instrumentation, unicorn_mode and a lot more!
github.com/vanhauser-thc/…
#fuzzing #security #exploitation
|
||
|
|
||
|
Franz Dill
@franzd
|
30. sij |
|
Fuzzing for Testing Security Vulnerabilities eponymouspickle.blogspot.com/2020/01/fuzzin… #ACM #Fuzzing #Security
|
||
|
|
||
|
Thuan Pham
@ThuanpvNus
|
30. sij |
|
My take-away from recent review article paper of P. Godefroid -- 3 (of N) open challenges in #fuzzing 1) how to engineer exhaustive symbolic testing in a cost-effective manner, 2) how to automate the generation of input grammars, and 3) how to effectively fuzz distributed apps
|
||
|
|
||
|
ForAllSecure
@ForAllSecure
|
29. sij |
|
What emerging cyber trends will have the most impact in the 2020s? “Highly scalable automated vuln discovery”, says JD Work of the Marine Corps Academy. He points to the #DARPACGC and #fuzzing resources of Google Project Zero via @AtlanticCouncil bit.ly/38PMkPX
|
||
|
|
||
|
movaxbx
@movaxbx2
|
29. sij |
|
Finding and exploiting CVE-2018–7445 (unauthenticated RCE in MikroTik’s RouterOS SMB)
#Exploit #Exploitation #Security #Mikrotik #Fuzzing movaxbx.ru/2020/01/29/fin… pic.twitter.com/4YrObjlSOH
|
||
|
||
|
Evgeny Belenky
@BelevgEvgeny
|
28. sij |
|
If you need to learn how to do #fuzzing, here's a collection of tutorials on different fuzzers ow.ly/WeD430qcDWX
|
||
|
|
||
|
Foluwa T. Rewane
@FoluwaRewane
|
28. sij |
|
What is #Fuzzing? It is a testing approach that consists of feeding large amounts of random inputs to the target program in an attempt to reveal bugs. It can be thought of as starting with something clear such as a valid application file, and “fuzzing” or “blurring” pieces of it. pic.twitter.com/LaqMyOS40F
|
||
|
||
|
catenacyber
@catenacyber
|
28. sij |
|
More patches for @MySQL to fix vulnerabilities found by #fuzzing by @TELECOMNancy students : telecomnancy.univ-lorraine.fr/fr/cyber-secur…
|
||
|
|
||
|
Júnior
@f0rgetful
|
27. sij |
|
|
||
|
Code Intelligence
@CI_GmbH
|
27. sij |
|
Read Sergej Dechands newest interview on how to benefit from the advantages of #fuzzing. Read the full article ow.ly/iB8C50y4dxP #fuzzyoursoftware
|
||
|
|
||