Related Courses: https://www.sans.org/cyber-security-courses/?focus-area=penetration-testing-ethical-hacking
Presented by: Chris Dale
https://twitter.com/ChrisADale

How does Continuous Attack Surface Management help disrupt Nation State hackers and cyber…

This article introduces VirtualBox research and explains how to build a coverage-based fuzzer, focusing on the emulated network device drivers. In the examples below, we explain how to create a harness for the non-default network device driver PCNet. The…

By Chris Aniszczyk (CNCF), Adam Korczynski (Ada Logics), David Korczynski (Ada Logics) In this blog post we present an overview of the state of fuzzing across CNCF projects. This is based on efforts…

Jazzer.js is an open-source fuzzer for the Node.js platform. It is based on libFuzzer and brings many of its features to the JavaScript ecosystem.

Fuzzing Host-to Guest Attack Surface in Android Protected KVM - Eugene Rodionov & Will Deacon, Google

Android 13 introduces native support of virtualization services built on top of Protected KVM (pKVM) for arm64 devices. Unlike in traditional KVM where…

Making Fuzzing Part of Your Software Development Lifecycle - Jonathan Metzman, Google

Fuzzing is a testing technique that uses randomized inputs to find bugs in software. Fuzzing is the most successful automated vulnetability/bug-finding technique and has…

James Kukucka from George Mason University at the 3nd International KLEE Workshop on Symbolic Execution


KLEE Workshop 2022: https://srg.doc.ic.ac.uk/klee22/
Slides: https://srg.doc.ic.ac.uk/klee22/talks/Kukucka-Confetti.pdf

RedEye is a visual analytic tool supporting Red & Blue Team operations - cisagov/RedEye

There may be an all-new acronym for you to try and remember, as a result of Microsoft fixing a lingering issue. This...