New release: 0d1n OdinV34 (fuzzing tool for web applications)
https://linuxsecurity.expert/tools/0d1n/
https://linuxsecurity.expert/tools/0d1n/
Linux Security Expert
0d1n review (fuzzing tool for web applications)
0d1n is a security tool to perform fuzzing of web applications and discover potential security issues. It is commonly used during security assignments.
Remember this? https://github.com/groundx/monocerus
going to bring lightweight EVM emulation + instrumentation engine to qiling framework. Fuzzing smart contract without the full official EVM is possible now!
ETA: when https://github.com/qilingframework/qiling reaches 2000 starts
going to bring lightweight EVM emulation + instrumentation engine to qiling framework. Fuzzing smart contract without the full official EVM is possible now!
ETA: when https://github.com/qilingframework/qiling reaches 2000 starts
GitHub
GitHub - groundx/monocerus: Monocerus emulator framework
Monocerus emulator framework. Contribute to groundx/monocerus development by creating an account on GitHub.
Mutiny - mutational fuzzer: Fuzzing Framework and Decept Proxy
https://github.com/Cisco-Talos/mutiny-fuzzer
https://github.com/Cisco-Talos/mutiny-fuzzer
GitHub
GitHub - Cisco-Talos/mutiny-fuzzer
Contribute to Cisco-Talos/mutiny-fuzzer development by creating an account on GitHub.
Fuzzing the Windows Kernel
https://research.checkpoint.com/2020/bugs-on-the-windshield-fuzzing-the-windows-kernel/amp/
https://research.checkpoint.com/2020/bugs-on-the-windshield-fuzzing-the-windows-kernel/amp/
JavaScript project for fuzzing browser cookies...
https://github.com/javanoscript-utilities/toxic-cookies
const tc = new Toxic_Cookies();
tc.poisionAllCookies();
New Issues and/or Pull Requests are certainly welcomed!
https://github.com/javanoscript-utilities/toxic-cookies
const tc = new Toxic_Cookies();
tc.poisionAllCookies();
New Issues and/or Pull Requests are certainly welcomed!
GitHub
GitHub - javanoscript-utilities/toxic-cookies: Tool for poisoning browser cookies of currently loaded domain
Tool for poisoning browser cookies of currently loaded domain - javanoscript-utilities/toxic-cookies
[PT008] Fuzzing Linux kernel with Syzkaller
https://blog.vincss.net/2020/12/pt008-en-fuzzing-linux-kernel-with-syzkaller.html
Vietnamese version: https://blog.vincss.net/2020/12/pt008-vi-fuzzing-linux-kernel-voi-syzkaller.html
https://blog.vincss.net/2020/12/pt008-en-fuzzing-linux-kernel-with-syzkaller.html
Vietnamese version: https://blog.vincss.net/2020/12/pt008-vi-fuzzing-linux-kernel-voi-syzkaller.html
blog.vincss.net
[PT008] Fuzzing Linux kernel with Syzkaller
Syzkaller is a very effective fuzzer for Linux kernel that has found a lot of bugs in recent years. You may have heard of names like Dirty...
Facebook AI Introduces N-Bref: A Neural-Based Decompiler Framework
https://www.marktechpost.com/2021/01/28/facebook-ai-introduces-n-bref-a-neural-based-decompiler-framework/
https://www.marktechpost.com/2021/01/28/facebook-ai-introduces-n-bref-a-neural-based-decompiler-framework/
MarkTechPost
Facebook AI Introduces N-Bref: A Neural-Based Decompiler Framework
Facebook AI introduces a neural-based decompiler framework called N-Bref, which improves traditional decompilation systems’ performance accuracy. The research led by Jishen Zhao is a collaboration between FAIR and UCSD STABLE Lab. This study presents a comprehensive…
FuzzSplore: Visualizing Feedback-Driven Fuzzing Techniques.
http://arxiv.org/abs/2102.02527
https://twitter.com/arxiv_org/status/1357999368788271105
http://arxiv.org/abs/2102.02527
https://twitter.com/arxiv_org/status/1357999368788271105
Twitter
arxiv
FuzzSplore: Visualizing Feedback-Driven Fuzzing Techniques. https://t.co/zEOhlaw592
ImHex - Hex Editor for Reverse Engineers, Programmers and people that value their eye sight when working at 3 AM.
https://github.com/WerWolv/ImHex
https://github.com/WerWolv/ImHex
GitHub
GitHub - WerWolv/ImHex: 🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3…
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM. - WerWolv/ImHex
Learn how to take aim at HTTP attack surfaces in https://twitter.com/Nosoynadiemas series on fuzzing the Apache Web Server
https://securitylab.github.com/research/fuzzing-apache-1
https://securitylab.github.com/research/fuzzing-apache-1
Twitter
Antonio Morales (@Nosoynadiemas) | Twitter
The latest Tweets from Antonio Morales (@Nosoynadiemas). Security Researcher at @GitHub @GHSecurityLab working on OSS
fpicker: Fuzzing with Frida
https://insinuator.net/2021/03/fpicker-fuzzing-with-frida/
Fpicker is a Frida-based coverage-guided, mostly in-process, blackbox fuzzing suite. Its most significant feature is the AFL++ proxy mode which enables blackbox in-process fuzzing with AFL++ on platforms supported by Frida.
https://github.com/ttdennis/fpicker
https://insinuator.net/2021/03/fpicker-fuzzing-with-frida/
Fpicker is a Frida-based coverage-guided, mostly in-process, blackbox fuzzing suite. Its most significant feature is the AFL++ proxy mode which enables blackbox in-process fuzzing with AFL++ on platforms supported by Frida.
https://github.com/ttdennis/fpicker
USENIX Security '20 - Analysis of DTLS Implementations Using Protocol State Fuzzing
https://youtube.com/watch?v=GSCFqDVCwB0&feature=youtu.be
https://youtube.com/watch?v=GSCFqDVCwB0&feature=youtu.be
YouTube
USENIX Security '20 - Analysis of DTLS Implementations Using Protocol State Fuzzing
Analysis of DTLS Implementations Using Protocol State Fuzzing
Paul Fiterau-Brostean and Bengt Jonsson, Uppsala University; Robert Merget, Ruhr-University Bochum; Joeri de Ruiter, SIDN Labs; Konstantinos Sagonas, Uppsala University; Juraj Somorovsky, Paderborn…
Paul Fiterau-Brostean and Bengt Jonsson, Uppsala University; Robert Merget, Ruhr-University Bochum; Joeri de Ruiter, SIDN Labs; Konstantinos Sagonas, Uppsala University; Juraj Somorovsky, Paderborn…
NDSS 2020 HYPER-CUBE: High-Dimensional Hypervisor Fuzzing
https://youtube.com/watch?v=GmIlLKT_nH8&feature=youtu.be
https://youtube.com/watch?v=GmIlLKT_nH8&feature=youtu.be
YouTube
NDSS 2020 HYPER-CUBE: High-Dimensional Hypervisor Fuzzing
SESSION 1B-1 HYPER-CUBE: High-Dimensional Hypervisor Fuzzing
Applying modern fuzzers to novel targets is often a very lucrative venture. Hypervisors are part of a very critical code base: compromising them could allow an attacker to compromise the whole…
Applying modern fuzzers to novel targets is often a very lucrative venture. Hypervisors are part of a very critical code base: compromising them could allow an attacker to compromise the whole…
Fuzzing sockets: Apache HTTP, Part 1: Mutations
https://securitylab.github.com/research/fuzzing-apache-1/
https://securitylab.github.com/research/fuzzing-apache-1/
Fuzzing sockets: Apache HTTP, Part 2: Custom Interceptors
https://securitylab.github.com/research/fuzzing-apache-2/
https://securitylab.github.com/research/fuzzing-apache-2/
Fuzzing JavaScript npm/nodejs/code (omggif) using jsfuzz (Youtube/Tutorial)
https://www.youtube.com/watch?v=1U_jIeHesZg
https://www.youtube.com/watch?v=1U_jIeHesZg
YouTube
Find Bugs in js/npm/nodejs code using Fuzz Testing (jsfuzz) - JavaScript Security #1
📥 Download source code and materials: https://academy.fuzzinglabs.com/fuzzing-javanoscript-jsfuzz?coupon=YOUTUBE
In this course, I will fuzz a JavaScript npm/nodejs library (omggif) in order to find uncaught JavaScript exceptions. I will explain how to create…
In this course, I will fuzz a JavaScript npm/nodejs library (omggif) in order to find uncaught JavaScript exceptions. I will explain how to create…
Forwarded from @wardriving
Now #openwifi FPGA allows more control on your needs over the re-transmission and ACK operations under monitor mode. A more powerful WiFi fuzzer can be done! Check out the updated packet injection and fuzzing app note
https://github.com/open-sdr/openwifi/blob/master/doc/app_notes/inject_80211.md#fpga-behavior-control
https://github.com/open-sdr/openwifi/blob/master/doc/app_notes/inject_80211.md#fpga-behavior-control
GitHub
openwifi/doc/app_notes/inject_80211.md at master · open-sdr/openwifi
open-source IEEE 802.11 WiFi baseband FPGA (chip) design: driver, software - open-sdr/openwifi
❤1