Beyond the Tip of the Iceberg - Fuzzing Binary Protocol for Deeper Code Coverage

Explore advanced techniques for fuzzing binary protocols to achieve deeper code coverage in this 46-minute conference talk from BSidesLV 2016. Delve into the challenges of file and network fuzzing, understand the limitations of AFL, and discover innovative approaches to overcome them. Learn about Network Demons, code coverage techniques, and the use of file descriptors and coverage maps. Witness demonstrations of UDP NetCove, code coverage, and NetCall Graph. Gain insights into manual fuzzing, real-world examples, and NetCurve tracing. Examine shell scripts and server programs, and uncover the small but crucial details that can make a significant difference in your fuzzing efforts.

Intro
Agenda
Fuzzing
Challenges
File Fuzzing
Network Fuzzing
Alex
How it works
AFL
Limitations
Our Approach
How Network Demons Work
Code Coverage
File Descriptors
Filter File Descriptors
Coverage Maps
Demo
UDP
NetCove
Code Coverage Demo
NetCall Graph Demo
Manual Fuzzing
Real World Example
NetCurve Tracing
Shell Script
Server Program
The Small Thing
Conclusion