Fuzzing Android - A Recipe for Uncovering Vulnerabilities Inside System Components in Android

Explore a powerful fuzzing approach for uncovering vulnerabilities in Android's core system components in this 45-minute Black Hat conference talk. Delve into the general methodology and its practical application across multiple real-life Android OS targets, including the Stagefright framework, mediaserver process, APK install process, installd daemon, dex2oat, and ART. Learn about the fuzzing process, encompassing data/seed generation, test case execution, logging, and triage mechanisms. Discover strategies for addressing challenges such as bug reproducibility, identifying unique issues, and prioritizing based on severity. Gain insights into the development of specialized tools using this methodology, with a focus on innovative technical details. Examine the impressive results achieved, including thousands of crashes discovered, numerous unique issues identified, and six CVE entries released by Google.