Fuzz Smarter Not Harder - An AFL Fuzz Primer
Offered By: YouTube
Course Description
Overview
Explore the fundamentals of fuzzing and advanced techniques in this BSidesSF 2016 conference talk. Dive into topics such as afl (American Fuzzy Lop), parallel fuzzing, LLVM fuzzing, deferred instrumentation, and persistent mode. Learn about fuzz dictionaries, checksums, target selection, and crash assessment. Discover how to leverage sanitizers and Valgrind for more effective fuzzing. Examine real-world examples including Shellshock, Heartbleed, and Cancelar Bypass. Gain insights into smarter fuzzing strategies to enhance your security testing capabilities.
Syllabus
Introduction
What is fuzzing
Afl
Parallel Fuzzing
LLVM Fuzzing
Deferred Instrumentation
Persistent Mode
Fuzz Dictionary
Checksums
Targets
Crash Assessment
Afl Big C
Sanitizers
Valgrind
shellshock
Heartbleed
Cancelar Bypass
Questions
Related Courses
Go Speed Tracer - Guided FuzzingHack In The Box Security Conference via YouTube The Aftermath of a Fuzz Run - What to Do About Those Crashes?
Linux Foundation via YouTube Cold, Hard Cache - Insomniac's Cache Simulator
GDC via YouTube Testing Complex Applications for PHP7
PHP UK Conference via YouTube Troubleshooting Native Memory Issues in Java Applications
Java via YouTube