Fuzzing Weekly
24. February 2023 | CW8
AddressSanitizer (ASAN) is an extremely useful tool in software testing, debugging, and security testing for finding memory safety issues in native applications. It's extremely straightforward to use on most platforms. However, the sanitizer output is sometimes hard to understand. Here's a weird trick, how to improve your findings with ASAN. Learn more.
From: @landaire
Jazzer.js is a free, coverage-guided, in-process fuzzer spanning the Node.js platform, which got recently integrated into Jest. The integration enables JavaScript developers now to use Jest for both functional and security testing without ever having to leave their development environment. This article demonstrates how it works, explained on a simple JavaScript project. Learn more.
From: Khaled Yakdan
In Other News
- Save The Date: Join The 2nd International FUZZING Workshop
FUZZING 2023, the 2nd international fuzzing workshop, will be co-located with ISSTA conference in Seattle (17-21 July) Submission deadline and more details coming soon. Learn more.
From: Marcel Böhme
- Fuzzing Research Digest – January 2023
BondiFuzz team has put together a selection of the most interesting fuzzing research from the past month for you. Learn More.
From: u/BondiFuzz_Com
- Tricentis Extends Mobile Testing Reach
Tricentis has added the ability to test native iOS and Android applications to its Testim software-as-a-service (SaaS) platform. Learn More.
From: Mike Vizard
This Week's Discussion
- How to Debug Go Fuzzing?
From: Msk
- How to Force Fuzzing Yield Coverage Data?
From: Sugar
- Symbolic Execution vs Fuzz Testing - What's the Difference?
From: Patrick Collins
New Tutorial
- Fuzzing cURL, Netatalk, and an Emulator Escape
From: Day[0]
Fuzzing Jobs
- Senior Exploit Developer
Bishop Fox, USA, Remote
- Embedded Software Development Engineer
Qualcomm Security, San Diego, CA, USA
Code Intelligence, Rheinwerkallee 6,
Bonn, NRW 53227, +49 228 28695830
Unsubscribe Manage preferences