Fuzzing Weekly
16. December 2022 | CW50
Go has a fantastic ecosystem of packages, such as the open source fuzz testing packages gofuzz and go-fuzz, which are simple to use and can be integrated into your testing workflow. This post will cover the advantages and disadvantages of fuzzing, how it can be implemented in Go, and different fuzzing techniques. Learn more.
From: Hrittik Roy
This post will take you on a journey of fuzzing Golang MessagePack implementations, including a basic introduction to the concept of fuzzing, and will show you how we discovered a MessagePack denial-of-service vulnerability (GO-2022-0972, CVE-2022-41719). Learn more.
From: Matt Schwager
In this blog post, I want to describe a recent bug finding technique that I've added to the PyPy JIT testing infrastructure. This technique uses the Z3 theorem prover to find bugs in the optimizer of PyPy's JIT, in particular its integer operation optimizations. Learn more.
From: Carl Friedrich Bolz-Tereick
This Weeks Discussions
- Why is AFL Not Catching a Simple Memory Error?
From: desert_ranger
- Parallel Processing With RapidFuzz Function
From: Alpha Green
- Call Method Using Variables in Python
From: sksankar
New Tutorial
- Golang Fuzz Tutorial With Examples
From: Tuan Nguyen
- How OSS-Fuzz Works: A Guide to Fuzz Testing for Open Source Projects
From: Hardik Shah
Fuzzing Jobs
- Principal Language Fuzzing Engineer
Epic Games, Cary, North Carolina, US
- Software Solution Engineer - Application Security (m/f/d)
Code Intelligence, Remote
Code Intelligence, Rheinwerkallee 6,
Bonn, NRW 53227, +49 228 28695830
Unsubscribe Manage preferences