| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 6 Mar 2009 13:43:06 -0500
From: julio sanchez <pete.sanches@...il.com>
To: Jeremy Brown <0xjbrown41@...il.com>, full-disclosure@...ts.grok.org.uk
Subject: Re: List of Fuzzers
>
>
>
> What have you ever written? Let us see some of your code to poke fun
> of. If it is as imperfect as you then we'd have a day of fun.
If i would release something it will be planified, and inovative, i dont
submit shit for fun or fake fame
>
>
> >What's hilarious is that none of them are usefull :)
>
> http://www.milw0rm.com/author/1531
> http://www.milw0rm.com/author/1835
90% of the research above were found by fuzzing, and those are public.
> Clearly my fuzzers are useful.
>
Wrong.
The IE overhyped bug wasn't found with any of your fuzzers, and also do you
really
need a fuzzer to find a bug in konqueror ?
The rest of theses lists are once again useless bugs, because these software
are used by ~1000 users worldwide.
Let me clarify this: i don't say you cant crash some useless
cnet/download/.com software
with your fuzzer, i only say that you cant beat any widly used software with
your fuzzing methods.
If you really knew what mean "Intelligent Fuzzing", we wouldn't have this
discution right now.
Content of type "text/html" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists