Advanced Fuzzing With LibAFL - Dominik Maier - Ekoparty 2024 - https://www.youtube.com/watch?v=FI7C37lz4Rg
YouTube
Advanced Fuzzing With LibAFL - Dominik Maier - Ekoparty 2024
Fuzzing is the art of uncovering vulnerabilities through rapid target re-executions and intelligent input mutations.
In this talk, we'll dive deep into LibAFL, the state-of-the-art fuzzing library by the AFLplusplus project, and explore its more advanced…
In this talk, we'll dive deep into LibAFL, the state-of-the-art fuzzing library by the AFLplusplus project, and explore its more advanced…
Finding Bugs Efficiently: A Practitioner’s Model of Program Analysis - https://github.com/nedwill/presentations/blob/main/asu-2024.pdf
GitHub
presentations/asu-2024.pdf at main · nedwill/presentations
Contribute to nedwill/presentations development by creating an account on GitHub.
Large Language Model assisted Hybrid Fuzzing - https://arxiv.org/pdf/2412.15931
What the PHUZZ?! Finding 0-days in Web Applications with Coverage-guided Fuzzing - https://media.ccc.de/v/38c3-what-the-phuzz-finding-0-days-in-web-applications-with-coverage-guided-fuzzing
streaming.media.ccc.de
Relive: What the PHUZZ?! Finding 0-days in Web Applications with Coverage-guided Fuzzing – 38C3: Illegal Instructions Streaming
Live streaming from the 38th Chaos Communication Congress
Harnessing Libraries for Effective Fuzzing (with AFL++) - https://github.com/20urc3/Publications/blob/main/Articles/LIB_HARNESS_GUIDE/README.md
GitHub
Publications/Articles/LIB_HARNESS_GUIDE/README.md at main · 20urc3/Publications
This repository contains the public work I produced, wheter it is research, post, slides, sometimes videos, and materials of my talks. - 20urc3/Publications
How AI-generated fuzz test uncovered a vulnerability in wolfSSL - https://www.code-intelligence.com/blog/ai-generated-fuzz-test-wolfssl-vulnerability
Code-Intelligence
How AI-generated fuzz test uncovered a vulnerability in wolfSSL
A heap-based use-after-free vulnerability in wolfSSL was discovered through AI-automated fuzz testing—without human interaction. Learn more in our blog
IoT Firmware Emulation and Its Security Application in Fuzzing: A Critical Revisit - https://www.mdpi.com/1999-5903/17/1/19
MDPI
IoT Firmware Emulation and Its Security Application in Fuzzing: A Critical Revisit
As IoT devices with microcontroller (MCU)-based firmware become more common in our lives, memory corruption vulnerabilities in their firmware are increasingly targeted by adversaries. Fuzzing is a powerful method for detecting these vulnerabilities, but it…
Introduction to Fuzzing Android Native Components: Strategies for Harness Creation - https://blog.convisoappsec.com/en/introduction-to-fuzzing-android-native-components-strategies-for-harness-creation/
Conviso AppSec
Introduction to Fuzzing Android Native Components: Strategies for Harness Creation
Learn how to build effective harnesses for fuzzing native libraries on Android. Explore techniques and strategies to uncover vulnerabilities
asnfuzzgen - ASN.1 Structure-Aware Fuzzing Compiler - https://github.com/FICS/asnfuzzgen
GitHub
GitHub - FICS/asnfuzzgen: asnfuzzgen - ASN.1 Structure-Aware Fuzzing Compiler
asnfuzzgen - ASN.1 Structure-Aware Fuzzing Compiler - FICS/asnfuzzgen
Fuzzing embedded systems - Part 2, Writing a fuzzer with LibAFL - https://blog.sparrrgh.me//fuzzing/embedded/2025/01/26/fuzzing-embedded-systems-2.html
Sparrrgh’s blog
Fuzzing embedded systems - Part 2, Writing a fuzzer with LibAFL
Intro
ROSA: Finding Backdoors with Fuzzing - https://binsec.github.io/nutshells/icse-25.html
binsec.github.io
ICSE'25: research paper
BINSEC: ICSE'25: research paper
How AI-Automated Fuzzing Uncovered a Vulnerability in wolfSSL - https://www.youtube.com/watch?v=sBG6a2fGFfQ
YouTube
How AI-Automated Fuzzing Uncovered a Vulnerability in wolfSSL
Despite wolfSSL’s rigorous software testing practices, in October 2024, Code Intelligence—an application security vendor—discovered a potentially exploitable defect in wolfSSL. Remarkably, the potential vulnerability was found without human intervention.…
Gudifu: Guided Differential Fuzzing for HTTP Request Parsing Discrepancies - https://www.onarlioglu.com/publications/raid2024gudifu.pdf
Testing Handbook - LibAFL - https://appsec.guide/docs/fuzzing/c-cpp/libafl/
Testing Handbook
LibAFL
LibAFL # The LibAFL fuzzer implements features from AFL-based fuzzers like AFL++. Similarly to AFL++, LibAFL provides better fuzzing performance and more advanced features over libFuzzer. However, with LibAFL, all functionality is provided in a modular and…