Browsing the "fuzzing" Tag

Featured

Podcast recap: Fuzzing, security testing and tips for a career in AppSec

July 30th, 2020 📆 | 1916 Views ⚑

Introduction In this episode of Infosec’s Cyber Work Podcast, host Chris Sienko welcomes back previous guest Dr. Jared DeMott. In

Tagged with: appsec • career • fuzzing • podcast • recap • security • testing • tips

Featured

Why fuzzing is your friend for DevSecOps — GCN

May 15th, 2020 📆 | 5905 Views ⚑

INDUSTRY INSIGHT Why fuzzing is your friend for DevSecOps By David Brumley May 15, 2020 Leaders proactively mitigate risk. One

Tagged with: ada • blackberry • canes navy • cloud computing • computer news • conficker • conficker worm • cto • cyber command • cyber security career • cyber security jobs • cyberattacks • cybersecurity • cybersecurity career • cybersecurity jobs • data.gov • defense knowledge online • defense technology • DevSecOps • dko • fdcc compliance • fisma • friend • fuzzing • GCN • gcn awards • gcn daily • gcn magazine • gcn.com • government computer news magazine • information assurance • intellipedia • ipv6 • ites2 • microsoft • mobile • nist • obama • open-source • PEO-EIS • product reviews • rugged it • smart grid • stimulus • US-CERT • virtualizaton • vivek kundra • voip • windows • wireless • wolfram alpha

Exploit/Advisories

Fuzzing VIM

March 5th, 2020 📆 | 8438 Views ⚑

This is a brief whitepaper that discusses fuzzing the VIM editor. Source link

Tagged with: advisory • CSRF • exploit • fuzzing • overflow • scanner • security • VIM • vulnerability • whitepaper • XSS

Pentest Tools

Maavi Fuzzing Utility

February 21st, 2020 📆 | 7598 Views ⚑

Maavi is a fuzzing tool that scans for vulnerabilities with obfuscated payloads. Has proxy support, records full history of actions,

Tagged with: advisory • CSRF • exploit • fuzzing • maavi • overflow • scanner • security • utility • vulnerability • whitepaper • XSS

Videos

DAY[0] Episode #29 – A New PWK/OSCP, Election Hacking, Kernel Exploits, and Fuzzing

February 19th, 2020 📆 | 6969 Views ⚑

Is the new OSCP worth-it? Can election apps be made secure? We’ll talk about those questions and several kernel exploits

Tagged with: day zero • DAY0 • dayzero • development • election • elections • episode • exploit development • exploit mitigations • exploits • fuzzing • games • hacking • information security • Kali • kernel • linux • offensive security • OSCP • Penetration Testing • pentesting • podcast • programming • pwk • PWKOSCP • RE • Reverse Engineering • security • software engineering • software exploits • twitch

Cryptography

Destroying x86_64 instruction decoders with differential fuzzing

January 31st, 2020 📆 | 1932 Views ⚑

TL;DR: x86_64 decoding is hard, and the number and variety of implementations available for it makes it uniquely suited to

Tagged with: decoders • destroying • differential • fuzzing • instruction

Videos

Brainpan Walktrough – #02 Fuzzing – Vulnhub CTF – Buffer Overflow

December 12th, 2019 📆 | 4925 Views ⚑

Todos os vídeos foram gravados no dia 11/12/2019. Brainpan é uma VM disponível no site Vulnhub. É ótima para iniciantes

Tagged with: brainpan • buffer • buffer overflow • CTF • Ethical Hacking • exploit-db • fuzzing • overflow • pentest • segurança da informação • sgurança infórmatica • vulnhub • walktrough

News

Fuzzing Hashing Techniques to Find Unknown Malware.

December 9th, 2019 📆 | 8200 Views ⚑

AV vendors use various tools and techniques to identify the newly launched malware from the advisory. Before driving into reversing

Tagged with: fuzzing • hashing • malware • techniques • unknown

Cyber Attack | Data Breach

Ffuf (Fuzz Faster U Fool) – An Open Source Fast Web Fuzzing Tool

December 8th, 2019 📆 | 2976 Views ⚑

Ffuf – Fuzz Faster U Fool is a great tool used for fuzzing. It has become really popular lately with

Tagged with: faster • fuzzing • source

Videos

Maksim Shudrak – How To Improve Coverage Guided Fuzzing Find New 0days – DEF CON 27 Conference

November 16th, 2019 📆 | 3583 Views ⚑

Fuzzing remains to be the most effective technique for bugs hunting in memory-unsafe programs. Last year, hundreds of security papers

Tagged with: 0days • Computer security • Con • conference • conference speakers • coverage • cyber security • DC27 • DEF • DEF CON 2019 • DEF CON 27 • defcon • Find • fuzzing • guided • hacker • hacker community • hacker conference • hackers • hacking conference • hacking conferences • improve • maksim • security conference • security conference 2019 • shudrak

Videos

Fuzzing ACDSee to find code vulnerabilities

November 7th, 2019 📆 | 5646 Views ⚑

See how you can use dynamic fuzzing to identify security bugs in a popular Windows image viewer, ACDSee. Read the

Tagged with: acdsee • fuzzing • vulnerabilities

Videos

Fuzzing calc.exe

October 11th, 2019 📆 | 6683 Views ⚑

Fuzzing calc.exe via GUI only. A bit silly, a bit sloppy, but a lot of fun! source

Tagged with: calc.exe • calcexe • fuzzing • pentesting tutorials

News

Mozilla Introduces Grizzly Browser Fuzzing Framework

July 12th, 2019 📆 | 4915 Views ⚑

Mozilla this week made public a new browser fuzzing framework designed to enable the fast deployment of fuzzers at scale.

Tagged with: browser • framework • fuzzing • grizzly • introduces • mozilla • vulnerabilities

News

What is AI fuzzing? And why it may be the next big cybersecurity threat

June 27th, 2019 📆 | 3982 Views ⚑

AI fuzzing definition AI fuzzing uses machine learning and similar techniques to find vulnerabilities in an application or system. Fuzzing

Tagged with: cybersecurity • fuzzing • threat

Videos

Lab Bug Bounty – Fuzzing with XSS Validator in Burp Suite

April 12th, 2019 📆 | 3833 Views ⚑

Estimados amigos y colegas, en esta oportunidad les estoy adjuntando una Demo que desarrolle sobre “Fuzzing with XSS Validator in

Tagged with: bounty • fuzzing • suite • validator

Videos

Hacken und Pentesting Tutorial #15 – Input Fuzzing

April 3rd, 2019 📆 | 3748 Views ⚑

In diesem Tutorial geht es um den Begriff des Input Fuzzings. DISCLAIMER: Ihr dürft das gelernte Wissen hier AUSSCHLIEßLICH auf

Tagged with: fuzzing • hacken • input • pentesting • tutorial

Videos

XSS and Fuzzing (Cybersecurity)

March 24th, 2019 📆 | 3474 Views ⚑

Web application servers are generally protected by web application firewalls. Majority of WAF uses signature-based filtering. Different forms of injection

Tagged with: cybersecurity • fuzzing

Videos

Buffer Overflows Made Easy – Part 3: Fuzzing

February 7th, 2019 📆 | 1920 Views ⚑

https://tcm-sec.com/2019/05/25/buffer-overflows-made-easy/ This video covers the art of fuzzing in buffer overflows, which allows us to identify if a command is

Tagged with: 32-bit buffer overflows • buffer • buffer overflows • Easy • EIP • ethical hacker • Ethical Hacking • exploit development • exploitation • exploits • fuzzing • hack • hacker • hacking • introduction • Kali • kali linux • linux • memory • metasploit • offset • overflows • Part • pentesting tutorials • python • registers • root • shellcode • spiking • stack • windows

Videos

Finding security vulnerabilities with modern fuzzing techniques – Rene Freingruber (RuhrSec 2018)

June 13th, 2018 📆 | 8306 Views ⚑

Original published by Hackmanit GmbH on Jun 4, 2018 here: https://www.youtube.com/watch?v=KFmeHz_vxfo Permission granted to repost by SEC Consult. Abstract. Fuzzing