HackDig : Dig high-quality web security articles for hackers

Microsoft open-sourced its Project OneFuzz fuzzing framework for Azure

Microsoft released the Project OneFuzz, an open-source fuzzing framework for its cloud computing service Azure. Microsoft this week announced the release of the Project OneFuzz which is an open-source fuzzing framework for its cloud computing service Azure. The project was previously used by the IT giant to find vulnerabilities in the popular service.
Publish At:2020-09-15 22:02 | Read:133 | Comments:0 | Tags:Breaking News Security Azure fuzzing Hacking information sec

Using Echidna to test a smart contract library

In this post, we’ll show you how to test your smart contracts with the Echidna fuzzer. In particular, you’ll see how to: Find a bug we discovered during the Set Protocol audit using a variation of differential fuzzing, and Specify and check useful properties for your own smart contract libraries. And we’ll demonstrate how to do all of this using cryt
Publish At:2020-08-17 15:00 | Read:246 | Comments:0 | Tags:Blockchain Fuzzing

Breaking the Solidity Compiler with a Fuzzer

Over the last few months, we’ve been fuzzing solc, the standard Solidity smart contract compiler, and we’ve racked up almost 20 (now mostly fixed) new bugs. A few of these are duplicates of existing bugs with slightly different symptoms or triggers, but the vast majority are previously unreported bugs in the compiler. This has been a very successful fuzzing
Publish At:2020-06-05 09:40 | Read:380 | Comments:0 | Tags:Blockchain Compilers Fuzzing

“Zero-click” mobile phone attacks – and how to avoid them

byPaul DucklinLast year, we wrote about an conference paper from Google’s Project Zero with the catchy title Look, no hands! – The remote, interaction-less attack surface of the iPhone.One of the researchers involved in that project has just published an interesting follow-up article on the Project Zero blog,This article doesn’t have the intrigui
Publish At:2020-05-03 09:06 | Read:631 | Comments:0 | Tags:Apple Google Vulnerability fuzzing imageio Project Zero zero

An Echidna for all Seasons

TL;DR: We have improved Echidna with tons of new features and enhancements since it was released—and there’s more to come. Two years ago, we open-sourced Echidna, our property-based smart contract fuzzer. Echidna is one of the tools we use most in smart contract assessments. According to our records, Echidna was used in about 35% of our smart contract audits
Publish At:2020-03-30 07:49 | Read:454 | Comments:0 | Tags:Blockchain Fuzzing

Google launches FuzzBench service to benchmark fuzzing tools

byJohn E DunnFirst came ‘fuzzing’, a long-established technique for spotting bugs such as security flaws in real applications using automated tools.More recently, security fuzzing tools have expanded in number, and today there are hundreds of specialised open-source tools and online services designed to probe specific types of software.But which security fuz
Publish At:2020-03-05 09:26 | Read:614 | Comments:0 | Tags:Google Security threats afl Eclipser FuzzBench fuzzers fuzzi

Destroying x86_64 instruction decoders with differential fuzzing

TL;DR: x86_64 decoding is hard, and the number and variety of implementations available for it makes it uniquely suited to differential fuzzing. We’re open sourcing mishegos, a differential fuzzer for instruction decoders. You can use it to discover discrepancies in your own decoders and analysis tools! Figure 1: Some of Mishegos’s output, visualized. In the
Publish At:2019-11-12 03:25 | Read:951 | Comments:0 | Tags:Fuzzing Reversing

Security assessment techniques for Go projects

The Trail of Bits Assurance practice has received an influx of Go projects, following the success of our Kubernetes assessment this summer. As a result, we’ve been adapting for Go projects some of the security assessment techniques and tactics we’ve used with other compiled languages. We started by understanding the design of the language, identifying areas
Publish At:2019-11-12 03:25 | Read:878 | Comments:0 | Tags:Compilers Dynamic Analysis Education Fuzzing Go Kubernetes S

Everything You Ever Wanted To Know About Test-Case Reduction, But Didn’t Know to Ask

Imagine reducing the amount of code and time needed to test software, while at the same time increasing the efficacy of your tests and making your debugging tasks easier—all with minimal human effort. It seems too good to be true, but we’re going to explain how test-case reduction can do all this (and maybe more). Understanding how reduction works can help w
Publish At:2019-11-12 03:25 | Read:960 | Comments:0 | Tags:Dynamic Analysis Fuzzing Research Practice

Watch Your Language: Our First Vyper Audit

A lot of companies are working on Ethereum smart contracts, yet writing secure contracts remains a difficult task. You still have to avoid common pitfalls, compiler issues, and constantly check your code for recently discovered risks. A recurrent source of vulnerabilities comes from the early state of the programming languages available. Most developers are
Publish At:2019-10-24 08:25 | Read:1451 | Comments:0 | Tags:Blockchain Fuzzing Manticore Static Analysis Symbolic Execut

Java Bugs with and without Fuzzing – AFL-based Java fuzzers and the Java Security Manager

In the last half a year I have been doing some fuzzing with AFL-based Java fuzzers, namely Kelinci and JQF. I didn’t really work with java-afl. The contents of this post are: Various AFL-based Java fuzzers are available that can be used to find more or less severe security issues. By combining these with sanitizers provided by the Java Security Manager
Publish At:2019-09-19 18:20 | Read:1279 | Comments:0 | Tags:Fuzzing AFL Apache fuzzing Java Java security manager JQF Ke

DeepState Now Supports Ensemble Fuzzing

by Alan Cao, Francis Lewis High School, Queens, NY We are proud to announce the integration of ensemble fuzzing into DeepState, our unit-testing framework powered by fuzzing and symbolic execution. Ensemble fuzzing allows testers to execute multiple fuzzers with varying heuristics in a single campaign, while maintaining an architecture for synchronizing gene
Publish At:2019-09-19 16:00 | Read:1706 | Comments:0 | Tags:Fuzzing Internship Projects

Automating Web Apps Input fuzzing via Burp Macros

Hi Readers, This article is about Burp Suite Macros which helps us in automating efforts of manual input payload fuzzing. While it may be know to many testers, this article is written for those who are yet to harness the power of burp suite’s macro automation. In my penetration testing career so far, while performing fuzzing of parameters and page fiel
Publish At:2017-09-03 05:00 | Read:4743 | Comments:0 | Tags:Knowledge-base OWASP SecureLayer7 Lab burp suite fuzzing inp

american fuzzy lop – Security Oriented Fuzzing Tool

American fuzzy lop is a security-oriented fuzzing tool that employs a novel type of compile-time instrumentation and genetic algorithms to automatically discover clean, interesting test cases that trigger new internal states in the targeted binary. This substantially improves the functional coverage for the fuzzed code. The compact synthesized corpora produc
Publish At:2015-11-20 20:50 | Read:2806 | Comments:0 | Tags:Hacking Tools Programming afl afl fuzzing afl-fuzz afl-fuzze

0d1n – Web HTTP Fuzzing Tool

0d1n is an open source web HTTP fuzzing tool and bruteforcer, its objective is to automate exhaustive tests and search for anomalies (you know, vulnerabilities). 0d1n can increase your productivity following web parameters, files, directories, forms and other things.Od1n is written in C and uses libcurl for performance.FeaturesSome of the features of 0d1n ar
Publish At:2015-11-09 14:25 | Read:3747 | Comments:0 | Tags:Hacking Tools Web Hacking 0d1n auth fuzzing fuzzing fuzzing-

Tools

Tag Cloud