Explore advanced techniques for hypervisor-based fuzzing using Xen in this 44-minute conference talk by Tamas K Lengyel from Intel Corporation. Dive into VM forking, introspection, and coverage tracing methods to enhance kernel fuzzing capabilities. Learn about the intricacies of VM forking, its speed considerations, and how to leverage Intel Processor Trace for improved coverage analysis. Discover alternative harnessing approaches, techniques for fuzzing PCI-passthrough devices, and methods for detecting doublefetches. Gain insights into the open-source code released under the MIT license, providing practical tools for implementing these advanced fuzzing strategies in your own projects.
VM Forking & Hypervisor-Based Fuzzing with Xen
Overview
Syllabus
Introducción
Outline
Kernel fuzzers do exist
VM introspection
VM forking overview
VM forking details
VM forking speed
Coverage tracing with VMI
Coverage tracing with Intel Processor Trace
Alternative harnessing
PCI-passthrough devices & fuzzing
Detecting doublefetches
Code released as open-source (MIT)
Taught by
Linux Foundation
