Fuzzing JavaScript npm/nodejs packages using jsfuzz In this course, I will fuzz a JavaScript npm / nodejs library (omggif) in order to find uncaught JavaScript exceptions. I will explain how to create a fuzzing harness for this target, run the fuzzer (jsfuzz), handle expected exceptions, analyze a crash and create a minimal crashing reproducer. You will get access of the complete tutorial with…
Fuzzing Java code using Jazzer Java Fuzzer In this course, I will fuzz a popular Java library (JSoup) in order to find uncaught Java exception. I will explain how to create a java fuzzing harness for this target using the Jazzer java fuzzer. Then, I will run it and show you what’s happening when you trigger crashes i.e. java exception. You…
Fuzzing C code / C++ programs using honggfuzz Tutorial In this tutorial, I will show how you can start fuzzing C code and C++ programs (binutils/readelf) very easily using honggfuzz. I will first compile honggfuzz and briefly explain the main mechanism behind it. Then, I will compile the targeted program (binutils / readelf) using the honggfuzz compilers. Finally,…
Fuzzing golang packages using go fuzz & libfuzzer In this course, I will first select a popular Golang package and identify the most interesting methods to fuzz. Then, I’ll explains how to use go fuzz and libfuzzer to compile the golang fuzzing target. Finally, I’ll show how to run the fuzzer. You will get access of the complete tutorial with…
Introduction to Fuzzing Python code For the moment, this introduction to Python fuzzing contains 3 modules but more will come in the future. If you want to make any proposal, please contact me. 1. Fuzzing Python code using pythonfuzz In this first course, I will select a popular Python package (pyasn1) and find some interesting methods to fuzz….
Fuzzing Rust library using cargo fuzz / libfuzzer I recently released my Rust security Audit and Fuzzing online course and a lot of people asked me to also create a short tutorial about rust fuzzing using cargo fuzz. In this course, I will first select a popular Rust library and identify the most interesting methods for rust fuzz…
Reversing Ewasm smart contracts 101 – EthCC 2020 I just gave a talk/workshop today (03/2020) at EthCC 2020 (Paris – France), about reversing Ewasm (Ethereum flavored WebAssembly) smart contract. In this talk, I briefly introduce WebAssembly concepts , Ewasm ethereum specificity and opcodes/instructions. Secondly, I show how to create Ewasm smart contracts and expose different techniques/tools…
Fuzzing javascript nodejs/npm WebAssembly parsing library with jsfuzz I asked recently on twitter what should be my next blogpost subject and voters choose this one, so here it is. In this short blogpost, I will first introduce jsfuzz, a coverage-guided javascript fuzzer for nodejs/npm packages. Then, I’ll discuss about the wasm binary parsing library I…
Fuzzing JavaScript WebAssembly APIs using Dharma/Domato (V8 engine) First of all, Happy new hacking year everyone 😉 I got asked multiple time if fuzzing WebAssembly APIs of Javascript engines is complicated, so here is a short tutorial using Dharma (but you can use Domato if you prefer). In this blogpost, I will first detailed which WebAssembly…
How to create polyglot HTML/JS/WebAssembly module Just a bit of context first, so last month I was at the hack.lu conference to give a workshop about “Reversing WebAssembly module 101” and spend some amazing time with friends. Workshop goes well, attendees were really interested and even better I received the award of the best talk/workshop…