Categories

Infosec: using fuzzers to find vulnerabilities

Posted on Wednesday, February 16th, 2011 in demonstrations, documentation, hacks, Linux, skills, tools by the machinegeek

Infosec Resources has a free online tutorial, An Introduction to Fuzzing: Using fuzzers (SPIKE) to find vulnerabilities. While not directly related to microcontrollers, this resource provides a hands-on guide to using open source Linux tools to find vulnerabilities in code on a networked Windows machine.

To fully participate in this demo, you’ll need two machines on your own network: one target with Windows, one fuzzing system with Linux (BackTrack 4 Final or later recommended.)

This entry was posted on Wednesday, February 16th, 2011 at 6:08 pm and is filed under demonstrations, documentation, hacks, Linux, skills, tools. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.

Leave a Reply

Notify me of followup comments via e-mail. You can also subscribe without commenting.

Recent Comments

  • Pekka Akselin: This is ridiculous!? :-) We are back at 256(!) byte EPROMs that needed multiple, a handful, of voltages to run! :-(
  • KH: Let's try a back-of-envelope calc balancing energies. From MCP1700 datasheet, there are graphs for a 200mA load step. Estimate the energy shortfall as 12uJ. Say...
  • Daniel: It's been a week and my comment is still awaiting moderation. Apparently the CIA doesn't want their involvement known?
  • KH: Agree, so okay, I guess he must have learned from somewhere. 100nF and 1000uF is so far apart, that was jarring; it's more magic incantation...
  • Max: I have a suspicion the hefty electrolytic cap might be some sort of cargo cult carry-over from other RF-based projects - for instance, I've seen...