new blog post: Write Fuzzable Code https://blog.regehr.org/archives/1687 in which I express a lack of sympathy for anti-fuzzing measures
I refuse to believe that this > “But I Want Fuzzing My Code to be Harder, Not Easier” is anything but a straw man. Otherwise nice article, even if some of it feels to be in the category of "easy to say, hard to do", like avoiding interpreters.
-
-
look up anti-fuzzing, it is a thing
-
Most recently: https://www.usenix.org/conference/usenixsecurity19/presentation/jung … -- their purported "adversaries" are of course heavily incentivized to overcome any anti-fuzzing attempts, so the net effect of these schemes would be to scare away the people that actually want to help. Bizarre.
Kraj razgovora
Novi razgovor -
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.