lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: Wed, 31 Oct 2007 21:51:39 +0100 (CET)
From: Michal Zalewski <lcamtuf@...ne.cc>
To: fuzzing@...testar.linuxbox.org
Cc: bugtraq@...urityfocus.com
Subject: (tool announcement) bunny the fuzzer

Hi all,

Just a quick note - I would like to announce the availability of our
general-purpose closed loop protocol-blind fuzzer for open source C code:

  http://code.google.com/p/bunny-the-fuzzer/

Bunny uses automatically generated C-level instrumentation to focus on
runtime inputs observed to trigger new control flow paths or interesting
parameter variations - and to bail out early on dead-end fuzzing routes.

This notably improves flow path coverage and overall quality of the
fuzzing process.

The tool is designed to maintain a near-native execution speed, and
requires virtually no setup, even when dealing with complex and large
codebases. This is probably a major improvement over previous closed loop
solutions.

The software should be reasonably stable, though some bugs might still
need to be ironed out. Current documentation is available here:

  http://code.google.com/p/bunny-the-fuzzer/wiki/BunnyDoc

Cheers,
/mz

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ