📚
OpenRCE
is preserved as a read-only archive. Launched at RECon Montreal in 2005. Registration and posting are disabled.
About
Articles
Book Store
Distributed RCE
Downloads
Event Calendar
Forums
Live Discussion
Reference Library
RSS Feeds
Search
Users
What's New
Customize Theme
bluegrey
blackgreen
metal
simple
Flag:
Tornado!
Hurricane!
Login:
Password:
Remember Me
Register
Blogs
>>
camill8
's Blog
Created: Wednesday, March 28 2007 15:06.45 CDT
Direct Link, View / Make / Edit Comments
What do IDA pro and fuzzing have to do with one another?
Author:
camill8
# Views:
1767
Why does IDA pro exist? Simply stated, because humans can look at assembly and make more sense out of it better than a program can decompile it. And the prevalence of IDA pro means people think this isn't going to change anytime soon.
So, what does this have to do with fuzzing? Well, a lot of time has been spent recently discussing how to make fuzzers "smarter". By this people generally mean either 1) more protocol aware or 2) cabable of incorporating runtime information into it's decisions, i.e. by looking at code coverage.
The fundamental question comes, like in IDA pro, as to whether this is a job more suited to a human or a program. I'm starting to lean toward the former - mostly because I've seen how hard it is to do the latter! If you start to believe this is always going to be a human endevor, it makes sense to start building tools which make it easier for a human to interact and change the way a fuzzer behaves, much like IDA makes it easier for a human to understand a disassembled program.
To this end, I've started writing a program VisFuzz which helps an analyst describe a protocol to a "fuzzer" in an intuitive way. Then the fuzzer can take this information and fuzz the target. The important fact being the focus is not on "fuzzing" but the interaction between the user and the fuzzer.
Archived Entries for camill8
Subject
# Views
Created On
No archived blog entries found.
There are
31,328
total registered users.
Recently Created Topics
[help] Unpacking VMP...
Mar/12
Reverse Engineering ...
Jul/06
let 'IDAPython' impo...
Sep/24
set 'IDAPython' as t...
Sep/24
GuessType return une...
Sep/20
About retrieving the...
Sep/07
How to find specific...
Aug/15
How to get data depe...
Jul/07
Identify RVA data in...
May/06
Question about memor...
Dec/12
Recent Forum Posts
Finding the procedur...
rolEYder
Question about debbu...
rolEYder
Identify RVA data in...
sohlow
let 'IDAPython' impo...
sohlow
How to find specific...
hackgreti
Problem with ollydbg
sh3dow
How can I write olly...
sh3dow
New LoadMAP plugin v...
mefisto...
Intel pin in loaded ...
djnemo
OOP_RE tool available?
Bl4ckm4n
Recent Blog Entries
halsten
Mar/14
Breaking IonCUBE VM
oleavr
Oct/24
Anatomy of a code tracer
hasherezade
Sep/24
IAT Patcher - new tool for ...
oleavr
Aug/27
CryptoShark: code tracer ba...
oleavr
Jun/25
Build a debugger in 5 minutes
More ...
Recent Blog Comments
nieo
on:
Mar/22
IAT Patcher - new tool for ...
djnemo
on:
Nov/17
Kernel debugger vs user mod...
acel
on:
Nov/14
Kernel debugger vs user mod...
pedram
on:
Dec/21
frida.github.io: scriptable...
capadleman
on:
Jun/19
Using NtCreateThreadEx for ...
More ...
Imagery
SoySauce Blueprint
Jun 6, 2008
[+] expand
View Gallery
(11) /
Submit
![[+] expand](/imagery/files/soysauce_blueprint.gif){kind=link}