GWP-ASan: Sampling-Based Detection of Memory-Safety Bugs in Production
This paper describes a family of tools that detect these two classes of memory-safety bugs, while running in production, at near-zero overhead. These tools combine page-granular guarded allocation and low-rate sampling. In other words, we added an “if” statement to a 36-year-old idea and made it work at scale
https://arxiv.org/pdf/2311.09394.pdf
This paper describes a family of tools that detect these two classes of memory-safety bugs, while running in production, at near-zero overhead. These tools combine page-granular guarded allocation and low-rate sampling. In other words, we added an “if” statement to a 36-year-old idea and made it work at scale
https://arxiv.org/pdf/2311.09394.pdf
Introducing broad C/C++ vulnerability management support
https://osv.dev/blog/posts/introducing-broad-c-c++-support/
https://osv.dev/blog/posts/introducing-broad-c-c++-support/
osv.dev
OSV - Open Source Vulnerabilities
Comprehensive vulnerability database for your open source projects and dependencies.
Lost in Translation: A Study of Bugs Introduced by Large Language Models while Translating Code
https://arxiv.org/abs/2308.03109
https://arxiv.org/abs/2308.03109
arXiv.org
Lost in Translation: A Study of Bugs Introduced by Large Language...
Code translation aims to convert source code from one programming language (PL) to another. Given the promising abilities of large language models (LLMs) in code synthesis, researchers are...
Underutilized Fuzzing Strategies for Modern Software Testing
https://www.youtube.com/watch?v=fMzeIv4U4LI
https://www.youtube.com/watch?v=fMzeIv4U4LI
YouTube
Underutilized Fuzzing Strategies for Modern Software Testing
Trail of Bits hosted one of LibAFL's maintainers and CISPA PhD candidate, Addison Crump, for our weekly internal Lunch and Learn session. While fuzzing is commonly associated with memory corruption vulnerabilities, it also has great potential for invariant…
Continuously fuzzing Python C extensions
https://blog.trailofbits.com/2024/02/23/continuously-fuzzing-python-c-extensions/
https://blog.trailofbits.com/2024/02/23/continuously-fuzzing-python-c-extensions/
The Trail of Bits Blog
Continuously fuzzing Python C extensions
Deserializing, decoding, and processing untrusted input are telltale signs that your project would benefit from fuzzing. Yes, even Python projects. Fuzzing helps reduce bugs in high-assurance software developed in all programming languages. Fortunately for…
Generate and Pray: Using SALLMS to Evaluate the Security of LLM Generated Code
https://arxiv.org/pdf/2311.00889.pdf
https://arxiv.org/pdf/2311.00889.pdf
Пример реализации фаззинг-обвязки средствами LLM (Claude 3)
https://gist.github.com/moyix/02029770cb4f7afc2ae91a01b3929118
https://gist.github.com/moyix/02029770cb4f7afc2ae91a01b3929118
Gist
Claude 3 writes a fuzzer
Claude 3 writes a fuzzer. GitHub Gist: instantly share code, notes, and snippets.
Alaid TechThread
Пример реализации фаззинг-обвязки средствами LLM (Claude 3) https://gist.github.com/moyix/02029770cb4f7afc2ae91a01b3929118
Using LLMs to Generate Fuzz Generators
https://verse.systems/blog/post/2024-03-09-using-llms-to-generate-fuzz-generators/
https://verse.systems/blog/post/2024-03-09-using-llms-to-generate-fuzz-generators/
Toby's Blog
Using LLMs to Generate Fuzz Generators
LLMs seem surprisingly good at many things. So much so that not a week goes by without someone coming up with yet another use-case for this technology, often to solve tasks quickly that traditionally …
SyzBridge: Bridging the Gap in Exploitability
Assessment of Linux Kernel Bugs in the Linux
Ecosystem
https://www.ndss-symposium.org/wp-content/uploads/2024-926-paper.pdf
Assessment of Linux Kernel Bugs in the Linux
Ecosystem
https://www.ndss-symposium.org/wp-content/uploads/2024-926-paper.pdf
K-LEAK: Towards Automating the Generation of Multi-Step Infoleak Exploits against the Linux Kernel
https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf
https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf
Alaid TechThread
Если вы знаете основы информационной безопасности, умеете искать уязвимости в системах и уважаете конфиденциальность — вам определенно может быть интересна эта стажировка 🔒 Три команды — AppSec, DevSecOps и Security Research — готовы взять стажеров на лето…
Результаты стажировки 2023 года одной из команд по теме Binary SCA и применению методов машинного обучения описали на Хабре:
Intro: https://habr.com/ru/companies/tinkoff/articles/795061/
Part 1: https://habr.com/ru/companies/tinkoff/articles/796919/
Part 2: https://habr.com/ru/companies/tinkoff/articles/801777/
Intro: https://habr.com/ru/companies/tinkoff/articles/795061/
Part 1: https://habr.com/ru/companies/tinkoff/articles/796919/
Part 2: https://habr.com/ru/companies/tinkoff/articles/801777/
Хабр
Что не увидит SCA
Всем привет! ? ? ? Мы стажеры — разработчики Тинькофф: Влад , Паша и Илья. В проекте по стажировкам в ИБ Summer of Code под руководством Ромы Лебедя мы реализовали анализатор бинарного кода на основе...
Why fuzzing over formal verification?
https://blog.trailofbits.com/2024/03/22/why-fuzzing-over-formal-verification/
https://blog.trailofbits.com/2024/03/22/why-fuzzing-over-formal-verification/
The Trail of Bits Blog
Why fuzzing over formal verification?
We recently introduced our new offering, invariant development as a service. A recurring question that we are asked is, “Why fuzzing instead of formal verification?” And the answer is, “It’s complicated.” We use fuzzing for most of our audits but have used…
DJI Mavic 3 Drone Research
https://www.nozominetworks.com/blog/dji-mavic-3-drone-research-part-1-firmware-analysis
https://www.nozominetworks.com/blog/dji-mavic-3-drone-research-part-2-vulnerability-analysis
https://www.nozominetworks.com/blog/dji-mavic-3-drone-research-part-1-firmware-analysis
https://www.nozominetworks.com/blog/dji-mavic-3-drone-research-part-2-vulnerability-analysis
Nozominetworks
DJI Mavic 3 Drone Research Part 1: Firmware Analysis
Nozomi Networks Labs recently conducted firmware analysis on a DJI Mavic 3 Series drone. Learn more about their findings.