fuzzing – Page 5 – WindowsTechs.com

Breaking the Solidity Compiler with a Fuzzer

Posted on June 5, 2020 by Alex Groce

Over the last few months, we’ve been fuzzing solc, the standard Solidity smart contract compiler, and we’ve racked up almost 20 (now mostly fixed) new bugs. A few of these are duplicates of existing bugs with slightly different symptoms or … Continue reading Breaking the Solidity Compiler with a Fuzzer→

New fuzzing tool for USB drivers uncovers bugs in Linux, macOS, Windows

Posted on May 28, 2020 by Zeljka Zorz

With a new fuzzing tool created specifically for testing the security of USB drivers, researchers have discovered more than two dozen vulnerabilities in a variety of operating systems. “USBFuzz discovered a total of 26 new bugs, including 16 memo… Continue reading New fuzzing tool for USB drivers uncovers bugs in Linux, macOS, Windows→

“Zero-click” mobile phone attacks – and how to avoid them

Posted on April 30, 2020 by Paul Ducklin

What if a messaging app has to show you an unwanted message so you can decide whether you want it shown to you? Continue reading “Zero-click” mobile phone attacks – and how to avoid them→

Is it possible to fuzz/dirbuster a .onion website?

Posted on April 17, 2020 by Anonyme

It’s possible to fuzz/dirbuster a classic web site to search hidden or sensitive ressources/data.
This command can do it :

wfuzz -w wordlist/general/common.txt http://testphp.vulnweb.com/FUZZ

My question is : Is it possible to do the sam… Continue reading Is it possible to fuzz/dirbuster a .onion website?→

Google launches FuzzBench service to benchmark fuzzing tools

Posted on March 5, 2020 by John E Dunn

Google has announced FuzzBench, a free service “for painlessly evaluating fuzzers in a reproducible way.” Continue reading Google launches FuzzBench service to benchmark fuzzing tools→

Fuzzer Mutators Packages for Python

Posted on February 4, 2020 by ystv

I am creating a network fuzzer in Python and I have a debate about using open-source mutators or create my custom mutator. The fuzzing target is proprietary network protocols. What I am looking for is some flexibility with the data types s… Continue reading Fuzzer Mutators Packages for Python→

Is a crash always exploitable for RCE?

Posted on January 21, 2020 by J. Doe

Reading papers written by teams looking for vulnerabilities using fuzzing, I notice that many people label a crash as a DoS vulnerability. While in other papers and researches, they go deeper after the crash and try to exploit it to get RC… Continue reading Is a crash always exploitable for RCE?→

Python 3 Fuzzing Coding not Working [closed]

Posted on January 14, 2020 by HMS8

I tried to convert a Python 2 code to Python 3. The problem is Python 2 code is working, while Python 3 code does not

Here is Python 2 code:

import socket

buffer=[“A”]
counter=100

while len(buffer) <= 30:
buffer.append(“A”*count… Continue reading Python 3 Fuzzing Coding not Working [closed]→

How do I pass a list of cookies to Wfuzz?

Posted on January 4, 2020 by squelch

I know that you can pass cookies in Wfuzz by using multiple -b parameters like so: wfuzz -w /path/to/wordlist -b cookie1=foo -b cookie2=bar http://example.com/FUZZ

but I am wondering if you can pass a list of cookies, instea… Continue reading How do I pass a list of cookies to Wfuzz?→

Strategies to find software vulnerabilities: what are the categories? [closed]

Posted on December 27, 2019 by EUSIAN

In our team we are planning to start pro-actively find vulnerabilities in our legacy software products. Previously, we relied on user reports, but that is not a pro-active approach. We don’t have expert penetration testers in… Continue reading Strategies to find software vulnerabilities: what are the categories? [closed]→