Vulnerability Researcher. Tweets are my own.
Joined January 2013
- Tweets 733
- Following 205
- Followers 620
- Likes 198
11 Photos and videos
Jason Kratzer retweeted
6 Apr 2021
We've successfully deployed ThreadSanitizer for Firefox - If you are working on multi-threaded C/C code, you might be interested in our results and experiences: hacks.mozilla.org/2021/04/el… #tsan #sanitizers #fuzzing
3
72
249
Jason Kratzer retweeted
9 Feb 2021
How we are fuzzing Firefox? We described the whole pipeline:
hacks.mozilla.org/2021/02/br…
1
82
226
Jason Kratzer retweeted
22 Jan 2021
To reduce the delay in getting bugs fixed, @pyoor_
and the @Mozilla fuzzing team automated as much of the process as possible. This effort resulted in the development of Bugmon. 🪲💻hacks.mozilla.org/2021/01/an…
1
3
7
Jason Kratzer retweeted
10 Sep 2020
The recording of my talk "The Human Component in Bug Finding" at #FuzzConEurope2020 is now available: youtube.com/watch?v=ifc2C5fL… Deploying #fuzzing in your company? Then this might be relevant to you. Thanks to @CI_GmbH for organizing the conference!
3
21
73
19 Nov 2019
Verifying myself: I am jkratzer on Keybase.io. 9AF2vCvteY-MY81f7jIJ-bGfd0D9g5Ep-CLy / keybase.io/jkratzer/sigs/9AF…
1
1
Jason Kratzer retweeted
10 Oct 2019
This is a good read for everyone in security, in particular (but not only) for researchers. The result is both shocking and educational. Thanks to my friends at @CISPA for doing this highly valuable work. #fuzzing #security #research #validation
10 Oct 2019
What is it that makes modern fuzzers successful? (Hint: It might not be what you think, and this raises questions.)
andreas-zeller.blogspot.com/…
ALT When Results Are All That Matters: The Case of the Angora Fuzzer
1
11
Jason Kratzer retweeted
24 Jul 2019
Our team has released the Grizzly Browser Fuzzing Framework.
blog.mozilla.org/security/20…
1
70
149
Jason Kratzer retweeted
13 Jun 2019
A Windows kernel bug (DirectX) I discovered was fixed in the latest MS patches.
Found via a custom fuzzer-pretty small and simple. Just targeted at very specific parts of the code
portal.msrc.microsoft.com/en…
2
3
27
Jason Kratzer retweeted
8 Feb 2019
Implemented a Python3 bridge for libFuzzer that allows you to implement custom mutators in Python. Initial prototype up at github.com/MozillaSecurity/l…, work in progress, but any feedback is welcome :) #fuzzing #libfuzzer
30
89
Jason Kratzer retweeted
29 Dec 2017
Fun with the new 3D printer, duplicating key from picture (or, what happens if you give decoder free time😇) youtube.com/watch?v=kUD_7p7u…
2
3
We couldn't be more excited to see the first major @rustlang components from Servo landing alongside all the other great work in @firefox #Quantum! Enjoy the new CSS styling and other improvments - next up, #WebRender. "Steal" all the things! x.com/firefox/status/9304351…
Close to 7 million lines of changed code later and we present the BRAND NEW FIREFOX.
Fast, fierce & for good.
mzl.la/2jolNon
3
102
261
Close to 7 million lines of changed code later and we present the BRAND NEW FIREFOX.
Fast, fierce & for good.
mzl.la/2jolNon
218
2,435
4,126
Next week we’re shipping the new Firefox. 🚢 Literally.
Get on board and get to what you love faster (in both the browser & this boat in NYC).
thebolditalic.com/a-boat-a-b…
16
95
416
Our pacsec 2017 slides<<From Out of Memory to Remote Code Execution>> speakerdeck.com/yukichen/fro…
2
250
381
Jason Kratzer retweeted
19 Sep 2017
Everything you've always wanted to know about Browser Security, now in one white paper from @X41Sec!
blog.skylined.nl/20170919001…
7
180
296
Jason Kratzer retweeted
30 Aug 2017
#CCS17 paper HexType: Efficient Detection of Type Confusion Errors for C is out. Also, supporting Firefox is hard nebelwelt.net/publications/f…
1
12
23
Jason Kratzer retweeted
4 Aug 2017
I found the best bug to exploit ever:
c1* o = new c1(a1)
((c2*)o)->m(a2)
where a1&2, c1&2 and m are all attacker controlled. seriously.
2
7
22
