zzuf - multi purpose fuzzer

Abstract

Zzuf is a lightweight fuzzing application.
It attempts to crash programs by randomly corrupting the data they read, in order to find bugs or vulnerabilities. It has been successfully used to find bugs in every major multimedia piece of software.

This talk is a hands-on presentation of zzuf, from the simple invocation to more advanced fuzzing including network applications, GUI applications and how to cope with zzuf's protocol-agnosticism. We will see how to find new, undisclosed bugs in popular applications in a matter of seconds.

Lang

EN

Speakers

Sam Hocevar

Links

http://libcaca.zoy.org/wiki/zzuf
http://sam.zoy.org/