Tag: Fuzzing
-
API Fuzzing: What Is It and Why Should You Use It?
API fuzzing is a technique used to test the security and reliability of an application’s APIs. Fuzzing involves sending a large number of …
-
Amazon Web Services Open Sources a KVM-Based Fuzzing Framework
Amazon Web Services has released an open source framework for running fuzzing tests against software applications, in which the state of …
-
Dynamic analysis of firmware components in IoT devices
We decided to discuss less obvious tools for working with firmware, including Renode and Qiling. Each of those tools has its own features, …
-
Fuzzing Image Parsing in Windows, Part Two: Uninitialized Memory
Continuing our discussion of image parsing vulnerabilities in Windows, we take a look at a comparatively less popular vulnerability class: …
-
Fuzzing Image Parsing in Windows, Part One: Color Profiles
Image parsing and rendering are basic features of any modern operating system (OS). Image parsing is an easily accessible attack surface, …
-
Fuzzing Services Help Push Technology into DevOps Pipeline
As companies have shifted security left, putting more security checks into the development pipeline, fuzz testing, or “fuzzing,” has …
-
GitLab Adds Security Fuzzing with Double Acquisition
With the acquisition, GitLab will be able to provide the full breadth of fuzzing to its users, and GitLab director of product David DeSanto …
-
New fuzzing tool for USB drivers uncovers bugs in Linux, macOS, Windows
With a new fuzzing tool created specifically for testing the security of USB drivers, researchers have discovered more than two dozen …
-
“Zero-click” mobile phone attacks – and how to avoid them
Last year, we wrote about an conference paper from Google’s Project Zero with the catchy title Look, no hands! – The remote, …
-
Google launches FuzzBench service to benchmark fuzzing tools
First came ‘fuzzing’, a long-established technique for spotting bugs such as security flaws in real applications using automated tools. …
-
Fuzzit: Building Fuzzing into Continuous Integration Workflows
Far from new, fuzzing is experiencing a resurgence amid the complexity of delivering software faster – especially in the cloud. One of …
-
GitHub launches Security Lab to boost open source security
When it comes to open source software security, nobody could accuse Microsoft-owned development platform GitHub of not thinking big when it …
●●●