all InfoSec news
Snapshot fuzzing direct composition with WTF
Oct. 17, 2023, 1:25 p.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
- Cisco Talos has developed a custom fuzzer using the popular snapshot fuzzer “WTF” which targets Direct Composition in Windows.
- Talos’ vulnerability research team used Protocol Buffers developed by Google to serialize and deserialize test cases.
- The Bochscpu backend of WTF was patched and other tricks were used to make snapshot fuzzing work correctly
- We hope that the release of our snapshot fuzzing implementation details will give new snapshot fuzzing ideas to the readers making direct composition more secure.
Direct Composition …
backend cases cisco cisco talos fuzzer fuzzing google popular protocol research snapshot talos team test vulnerability vulnerability research vulnerability research team windows work
More from malware.news / Malware Analysis, News and Indicators - Latest topics
Update: file-magic.py Version 0.0.8
11 hours ago |
malware.news
What the Biggest-Ever Botnet Takedown Means
1 day, 11 hours ago |
malware.news
Nearly 6M WordPress sites may be affected by bugs in 3 plug-ins
1 day, 14 hours ago |
malware.news
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)