FuzzingLabs, Author At FuzzingLabs

Benchmarking Android APK Deobfuscation using Small Local LLMs

ByFuzzingLabs 06/08/202509/01/2025

Ai-assisted Android application reversing Benchmarking Android APK Deobfuscation using Small Local LLMs Tool Overview – Deobfuscate-android-app Android applications are commonly obfuscated before release, especially when they handle sensitive logic such as authentication, license verification, or cryptographic routines. Obfuscation tools like ProGuard and R8 rename classes and methods, remove debug information, and flatten control flows to…

Blogpost | AI & ML Security | Audit & Security Assessment | Offensive | Research

AI-Driven Threat Modeling – LLMs for Automated STRIDE Analysis

ByFuzzingLabs 06/02/202506/04/2025

AI-Driven Threat Modeling LLMs for Automated STRIDE Analysis Threat modeling has always been about understanding how the components of an application interact, where the boundaries lie, and what could go wrong at each connection. Traditionally, this process has been manual, relying on diagrams and the expertise of security professionals to map out relationships and identify…

Blogpost | Blockchain | Ethereum & EVM | Research | Talk

EVM Security – Insights from Zer0Con 2025

ByFuzzingLabs 05/09/202506/04/2025

EVM Security Insights from Zer0Con 2025 At Zer0Con 2025, the FuzzingLabs team, Mathieu Hoste and Bryton Bernard, delivered an engaging and insightful presentation on one of the most critical aspects of Ethereum’s security: the vulnerabilities within the Ethereum Virtual Machine (EVM). In our session, titled “Ethereum’s Achilles’ Heel: Attacking and Fuzzing EVMs for Fun (and…

Blogpost | Fuzzing | Research

Linux Hardening – State of Linux Snapshot Fuzzing

ByFuzzingLabs 04/11/202504/11/2025

Linux Hardening State of Linux Snapshot Fuzzing What is snapshot fuzzing ? Fuzzing is a well-established technique for finding software vulnerabilities, and snapshot fuzzing represents a significant advancement, enhancing efficiency and expanding the scope of testable software. Snapshot fuzzing is particularly valuable in application security where it enables thorough black-box testing of applications, regardless of…

Blogpost | Cryptography | Research

Differential Cryptanalysis 101 – Exploring Differential Methods in Block Ciphers

ByFuzzingLabs 03/18/202503/20/2025

Differential Cryptanalysis 101 Exploring Differential Methods in Block Ciphers Cryptanalysis has been playing an essential role in the security of both software and hardware systems for decades and now more than ever. Many knows the essentials of cryptography through school, trainings or self learning, but very few know the ways of cryptanalysis, which is equally…

Attacking & Fuzzing Polkadot Node – Triggering Denial-of-Service via Gossamer RPC Flaws

ByFuzzingLabs 03/13/202503/13/2025

Attacking & Fuzzing of Polkadot Node Triggering Denial-of-Service via Gossamer RPC Flaws Gossamer is a Go-based implementation of a Polkadot node, developed by ChainSafe Systems. It allows interaction with the Polkadot network, enabling users to participate as full nodes, validators, or other roles. In this post, we will show you what we did to find…

Blogpost | Ethereum & EVM

HTB University Writeup – Hacking StarGazer in HTB CTF

ByFuzzingLabs 03/06/202503/06/2025

HTB UNIVERSITY Writeup Solidity Shenanigans: Hacking StarGazer in HTB CTF In mid-December, our school team, Phreaks 2600, participated in the HTB University CTF. Among the challenges featured in the competition was one titled “StarGazer,” classified as the Hard challenge of the Blockchain category. This challenge focused on Solidity and explored the concepts of UUPSUpgradeable and…

Blogpost | Research

Introduction to modern memory management

ByFuzzingLabs 03/03/202503/04/2025

Memory management Introduction to modern memory management The goal of this article is to present the functioning of volatile memory in general on our modern computers. Physical Organization Before discussing volatile memory, it is important to understand the basics of how a computer operates. A PC is composed of several electronic components and peripherals that…

Blogpost | Android | Java | Mobile

Ph0wn2024 Writeup – Race Roller Application reversing

ByFuzzingLabs 02/27/202506/10/2025

Ph0wn2024 Writeup Race Roller Application reversing The Ph0wn 2024 CTF was a hacking challenge specialized in smart-devices and low-level softwares.This event took place on November 30th in the south of France. It is a very original CTF because we had very original challenges such as hacking EV3 Lego robots or Pico PCB. In this article…

Blogpost | AI & ML Security

Attacking Reasoning models

ByFuzzingLabs 02/25/202506/04/2025

DeepSeek R1 & Claude LLM vulnerabilities Attacking Reasoning models In recent months, reasoning models have gained significant attention, particularly with the emergence of DeepSeek R1, which aim to improve logical consistency and step-by-step problem-solving in LLMs. At the core of these advancements is Chain of Thought (CoT) reasoning, a technique that enables models to break…

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Follow us

We value your privacy

Table of Content