| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 09 Sep 2009 00:20:34 -0400 From: Krakow Labs <krakowlabs@...il.com> To: bugtraq@...urityfocus.com, full-disclosure@...ts.grok.org.uk, news@...uriteam.com Subject: 4f: The File Format Fuzzing Framework Krakow Labs Development 4f: The File Format Fuzzing Framework 4f is a file format fuzzing framework. 4f uses modules which are specifications of the targeted binary or text file format that tell it how to fuzz the target application. If 4f detects a crash, it will log crucial information important for allowing the 4f user to reproduce the problem and also debugging information important to deciding the severity of the bug and its exploitability. 4f uses specialized modules for fuzzing code that interprets file formats. Several modules are included and more can be written to follow other file formats. Full source code, binary, package, demonstration photo and video @ http://www.krakowlabs.com You can also check out the video that shows 4f discovering 0day (not worth much but it shows 4f works!) @ SecurityTube too --> http://www.securitytube.net/The-File-Format-Fuzzing-Framework-(4f)-video.aspx ~KL
Powered by blists - more mailing lists