Explore the attack surface of PDF files and learn efficient fuzzing techniques in this 22-minute Black Hat conference talk. Discover methods for identifying and testing vulnerabilities, gathering comprehensive test cases, and optimizing PDF reader fuzzing. Gain insights into statistical results based on over 100 CVEs discovered within a year. Presented by Ke Liu, this talk covers the intricacies of Portable Document Format, effective fuzzing tricks, and provides valuable statistical insights for security researchers and professionals.
Dig Into the Attack Surface of PDF and Gain 100+ CVEs in 1 Year
Overview
Syllabus
Intro
Why Portable Document Format
Find the Attack Surface
Get More Test Cases
Fuzzing Tricks
Statistical Results
Black Hat Sound Bytes
Taught by
Black Hat
Related Courses
-
A New Method to Bypass 64-bit Linux ASLR
-
Don't Stand So Close To Me - An Analysis of the NFC Attack Surface
-
How to Find Bugs in USB Device Drivers
-
Preloading Insecurity in Your Electron
-
A Retrospective Case Study of VMware Guest-to-Host Escape Vulnerabilities
-
Windows Defender - Demystifying and Bypassing ASR by Understanding the AV's Signatures
