Fuzzing Workflow Automation - youtube.com/watch?v=NbWDhk-9… at @defcon "Fuzzing" is an automated software testing technique essential for detecting security vulnerabilities, effectively identifying over 100,000 bugs across the industry. While fuzzing has proven effective in uncovering critical issues, software teams often face challenges when implementing the fuzzing process. Teams must spend significant time identifying targets for fuzzing and creating test harnesses with initial inputs. Finally, engineering teams must analyze and fix issues detected by fuzzing. We created an automated fuzzing solution that leverages LLMs for the codebase analysis to identify optimal fuzzing targets, generating precise fuzzing test harnesses and initial seed inputs. Our solution automates the reproduction of bugs discovered during fuzzing and generates patches for the affected code. We achieved significant improvements across all targeted areas, demonstrating the effectiveness of integrating LLMs and automatic code analysis into the fuzzing process. - @mbazaliy and @o1meke at @NVIDIADRIVE, @nvidia #DEFCON33 #Fuzzing #AIforSecurity #LLMSecurity #Automation #BugHunting #SoftwareSecurity #VulnResearch #CodeAnalysis #KernelFuzzing #nvidia #NVIDIADRIVE

Fuzzing the Kernel using AFL Unicorn github.com/fgsect/unicorefuz… #kernelfuzzing #unicorn

Just published @nils @yongchuank Windows Kernel fuzzing slides (T2 and HITB). labs.mwrinfosecurity.com/pub… labs.mwrinfosecurity.com/pub… #kernelfuzzing