Using syzkaller to fuzz the Linux kernel network stack externally

By applying well-known fuzzing techniques to a popular target, I found several bugs that in total yielded over $200K in bounties. In this article I will demonstrate how powerful fuzzing can be when applied to software which has not yet faced sufficient testing.

ClusterFuzzLite - Simple continuous fuzzing that runs in CI. - google/clusterfuzzlite

State-of-the-art native debugging tools. Contribute to HyperDbg/HyperDbg development by creating an account on GitHub.

Fuzzing the CNCF Landscape - Adam Korczynski & David Korczynski, Ada Logics

This talk presents Adam’s and David’s experience with fuzzing more than ten projects in the CNCF landscape over the last year resulting in more than hundred bugs filed and fixed.…

CVE-2022-26134 Proof of Concept. Contribute to jbaines-r7/through_the_wire development by creating an account on GitHub.

Related Courses: https://www.sans.org/cyber-security-courses/?focus-area=penetration-testing-ethical-hacking
Presented by: Chris Dale
https://twitter.com/ChrisADale

How does Continuous Attack Surface Management help disrupt Nation State hackers and cyber…

This article introduces VirtualBox research and explains how to build a coverage-based fuzzer, focusing on the emulated network device drivers. In the examples below, we explain how to create a harness for the non-default network device driver PCNet. The…

By Chris Aniszczyk (CNCF), Adam Korczynski (Ada Logics), David Korczynski (Ada Logics) In this blog post we present an overview of the state of fuzzing across CNCF projects. This is based on efforts…

Jazzer.js is an open-source fuzzer for the Node.js platform. It is based on libFuzzer and brings many of its features to the JavaScript ecosystem.