Trapfuzzer - Coverage-Guided Binary Fuzzing with Breakpoints
Hack In The Box Security Conference via YouTube
Overview
Syllabus
Intro
What is Fuzzing?
What is Coverage-Guided Fuzzing?
Background
Inspiration
Overview
binary patcher - basic-block-info-file example
binary patcher - example
Seed Mutation
Fuzzer Module - Corpus Distillation
Trace module - Theory
Lets Fuzz WPS - Find Target Module
Lets Fuzz WPS - Linux Version of FileMon
GDB Python API
Workflow
Code - GDB Plugin
Code - Tracer Part
Speed up Instrument - accelerated mode
Lets Fuzz WPS Again!
Initial Results
GDB Internals
Modify GDB
Code for SIGTRAP
Architecture
Windows Support #2 - DbgEngTracer
Dialog Box
Preparing the Environment
Future Plans
Taught by
Hack In The Box Security Conference