Dailydave mailing list archives

Previous By Date Next
Previous By Thread Next

Re: School project start: a fuzzer

From: Agustin Gianni <agustingianni () gmail com>
Date: Fri, 8 May 2009 11:46:27 -0300
Just an idea, try mixing up an aplication like valgrind and a fuzzer. That
should
be an interesting thing to do.

Just a thought.

http://agustingianni.googlepages.com/ffuzer.tar.bz2

That is an old version of my file fuzzer. It may help you.

On Fri, May 8, 2009 at 6:11 AM, Martin Zember <martin.zember () matfyz cz>wrote:


Hi community,

could you please give me some advice about a school project? It is an
obligatory team project.

We plan to create a fuzzer. I hope it makes sense to build another fuzzer,
since different fuzzers find different bugs, right..? ;-)

We have a lot of time (9 months, 5 people, 1day per week), but not more, so
it
is not a good ground for research. The project should be implemented,
documented, finished, presented. The question is, how deep can we go (what
to
promise in the specification)? My guess is that detecting success during
fuzzing only when application crashes is too lame. "Feedback fuzzing" is
maybe
too complicated. What is realistic?

Even though it would be nice, we did not find a paid project, which is
interesting enough. We are not obliged to do a fuzzer so other suggestions
or
warnings are welcome.

Martin
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave


_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave
Previous By Date Next
Previous By Thread Next

Current thread: