Fuzzing - Finding Bugs and Vulnerabilities Automatically

Explore the world of fuzzing in this comprehensive 39-minute conference talk by David Korczynski and Adam Korczynski from Ada Logics. Dive into the basics and advanced topics of this automated testing technique for finding bugs and vulnerabilities in software. Learn why fuzzing is crucial for open-source software through brief introductions and illuminating case studies. Discover how to write test harnesses that pass pseudo-random data to target applications, aiming to uncover critical bugs and security vulnerabilities. Gain insights from the speakers' extensive experience in writing fuzzers for over 200 open-source projects, which have led to the discovery of thousands of bugs, many of them security-critical. Explore important open-source projects related to fuzzing, such as OSS-Fuzz and Fuzz Introspector. Whether you're new to fuzzing or have some experience, this talk caters to a broad audience, providing valuable knowledge for developers and security professionals alike.

Fuzzing Session: Finding Bugs and Vulnerabilities Automatically - David Korczynski & Adam Korczynski