Explore the challenges and solutions in automated firmware testing with this conference talk on Fuzzware, a project designed to enable scalable fuzz testing for deeply embedded firmware. Learn how Tobias Scharnowski and Marius Muench tackle the complexities of analyzing device-specific software on proprietary hardware platforms. Discover their innovative approach combining program analysis and emulation to test firmware independently of its hardware. Gain insights into the vulnerabilities they uncovered in popular embedded network stacks and understand the potential impact of this open-source tool on the security analysis community. Delve into the speakers' expertise in embedded systems security, binary exploitation, and CTF competitions as they present their quest to automate and scale firmware analysis without the need for physical devices.
Fuzzware - Automating & Scaling Fuzzing For Firmware
Overview
Syllabus
Fuzzware: Automating & Scaling Fuzzing For Firmware by Tobias Scharnowski & Marius Muench | Nullcon
Taught by
nullcon
Related Courses
-
Finding 0days in Embedded Systems with Code Coverage Guided Fuzzing
-
Identifying Multi-Binary Vulnerabilities in Embedded Firmware at Scale
-
IoT and OT Firmware Security Analysis with EMBA - From Firmware to Exploit
-
Army of Undead - Tailored Firmware Emulation
-
Using Static Binary Analysis to Find Vulnerabilities and Backdoors in Firmware
-
Firmware.RE - Firmware Unpacking, Analysis and Vulnerability-Discovery as a Service
