Snapshot fuzzing direct composition with WTF - https://blog.talosintelligence.com/snapshot-fuzzing-direct-composition-with-wtf/
Cisco Talos Blog
Snapshot fuzzing direct composition with WTF
Although there is public research on Direct Composition, only a few discuss fuzzing this feature, and none, to our knowledge, that covers snapshot fuzzing.
Large Language Model guided Protocol Fuzzing - https://mpi-softsec.github.io/papers/NDSS24-chatafl.pdf
Cascade: CPU Fuzzing via Intricate Program Generation - https://comsec.ethz.ch/research/hardware-design-security/cascade-cpu-fuzzing-via-intricate-program-generation/
Writing a Windows Fuzzer From Scratch
- https://www.legacyy.xyz/vr/windows/2023/10/23/writing-a-windows-fuzzer-from-scratch.html
- https://www.legacyy.xyz/vr/windows/2023/10/23/writing-a-windows-fuzzer-from-scratch.html
Legacyy
Writing a Windows Fuzzer From Scratch
Over the past year, I have dedicated a large majority of my spare time to studying Windows internals. Doing so got me hooked on content from vulnerability research space, and such I have started learning how to fuzz simple windows targets.
Fuzzer Development: The Soul of a New Machine - https://h0mbre.github.io/New_Fuzzer_Project/
HEXACON2023 - A Year Fuzzing XNU Mach IPC by Nguyen Vu Hoang - https://www.youtube.com/watch?v=gZujzty6O7o
YouTube
HEXACON2023 - A Year Fuzzing XNU Mach IPC by Nguyen Vu Hoang
https://www.hexacon.fr/conference/speakers/#fuzzing_xnu_ipc
π3
Snapshot Fuzzing with WTF Fuzzer - https://www.youtube.com/watch?v=ZT01RaC4SKs
YouTube
Snapshot Fuzzing with WTF Fuzzer
π₯ In this video, we dive into the world of snapshot fuzzing and explore the powerful capabilities of the WTF Fuzzer. π
00:00 Introduction
00:50 How to configure Hyper-V
13:47 How to use lockmem tool to avoid pagefaults?
15:00 Understanding harness code,β¦
00:00 Introduction
00:50 How to configure Hyper-V
13:47 How to use lockmem tool to avoid pagefaults?
15:00 Understanding harness code,β¦
π1
CNCF Fuzzing Handbook - https://github.com/cncf/tag-security/blob/main/security-fuzzing-handbook/handbook-fuzzing.pdf
HOEDUR: Embedded Firmware Fuzzing using Multi-Stream Inputs - https://github.com/fuzzware-fuzzer/hoedur
GitHub
GitHub - fuzzware-fuzzer/hoedur
Contribute to fuzzware-fuzzer/hoedur development by creating an account on GitHub.
π₯2π1
SplITS: automated fuzzing framework focused on solving magic strings in monolithic firmware. - https://github.com/SplITS-Fuzzer/SplITS
GitHub
GitHub - SplITS-Fuzzer/SplITS
Contribute to SplITS-Fuzzer/SplITS development by creating an account on GitHub.
Prompt Injection π― AI & LLM hacking and GPT Attack - https://youtu.be/86AFddhX2zc
YouTube
Prompt Injection π― AI hacking & LLM Attacks
Prompt Injection is a rising concern in the AI realm, especially with models like GPT. In this video, we'll explore the intricacies of Prompt Injection attacks, demonstrating live on dedicated websites how GPT can be manipulated to potentially leak secretβ¦
Escaping the sandbox: A bug that speaks for itself - https://microsoftedge.github.io/edgevr/posts/Escaping-the-sandbox-A-bug-that-speaks-for-itself/
Microsoft Browser Vulnerability Research
Escaping the sandbox: A bug that speaks for itself
Introduction
π5
Fuzzing Tinybmp in Rust || From dumb to structure-aware guide - https://symeonp.github.io/2022/11/16/tinybmp_rust_fuzzing.html
π₯2
π Exciting News from FuzzingLabs Academy! π
We're offering a special 10% discount on our online courses. π
Use the code: BLACKFRIDAY23
Don't miss out on this opportunity to enhance your fuzzing and reversing skills at a great price.
Visit us now at https://academy.fuzzinglabs.com!
We're offering a special 10% discount on our online courses. π
Use the code: BLACKFRIDAY23
Don't miss out on this opportunity to enhance your fuzzing and reversing skills at a great price.
Visit us now at https://academy.fuzzinglabs.com!
FuzzingLabs Academy
β€2π₯1
Semantic fuzzing of the Rust compiler and interpreter - https://ethz.ch/content/dam/ethz/special-interest/infk/inst-pls/plf-dam/documents/StudentProjects/MasterTheses/2023-Andy-Thesis.pdf
π₯3π2
tmpout vol3 - "silver bullet to elf consumer projects" (fuzzing projects that take ELFs as input) - https://tmpout.sh/3/09.html
Fuzzing WeChatβs Wxam Parser - https://signal-labs.com/fuzzing-wechats-wxam-parser/
Signal Labs
Fuzzing WeChatβs Wxam Parser | Advanced Offensive Cybersecurity Training
Fuzzing WeChat's Wxam Parser with WinAFL + Jackalope! You'll see some of the challenges I had in my harnessing of the target and how my initial fuzzer framework I chose had to be replaced due to lack of support for certain functionality that WeChat used (andβ¦
π5β€1
A LibAFL Introductory Workshop - https://www.atredis.com/blog/2023/12/4/a-libafl-introductory-workshop
Atredis Partners
LibAFL Introductory workshop β Atredis Partners
π₯8
kudelskisecurity/fuzzomatic: Automatically fuzz Rust projects from scratch using AI - https://github.com/kudelskisecurity/fuzzomatic
GitHub
GitHub - kudelskisecurity/fuzzomatic: Automatically fuzz Rust projects from scratch
Automatically fuzz Rust projects from scratch. Contribute to kudelskisecurity/fuzzomatic development by creating an account on GitHub.
π₯2β€1