George+Robert making the case for hunting reliable, arch-agnostic logic flaws. Revealing 1 logic flaw doesn't always disclose others.
Fuzzing for bugs yields poor results on offense. Too many other people looking with same tools, long dev time. #youkillityoueatit
-
-
-
Talking from experience with pwn2own
#youkillityoueatitpic.twitter.com/1fZFKHpnov
- 7 more replies
New conversation -
-
-
Heh full disclosure: I was just repeating what was said at a presentation. I don't agree with it. Nuance needed here.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Fuzzing is large funnel to pri for further analysis. Not only approach, but ok start. We've seen diff teams use same tools w diff results.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
I think this is true for some (most?) open source codebases unless you find an attack surface nobody has looked at (Stagefright?).
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Also '0day' fuzzing techniques. I can imagine being the only person in the world with afl-fuzz you would do ok...
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Not as many people as you think at any given time are fuzzing.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.