EDN

Protecting embedded IoT devices with fuzz testing

With the proliferation of IoT devices come increased embedded security attacks. Historically, embedded system engineers have ignored device-layer security despite the many areas of embedded devices ...
Hackaday

Nix + Automated Fuzz Testing Finds Bug In PDF Parser

[Michael Lynch]’s adventures in configuring Nix to automate fuzz testing is a lot of things all rolled into one. It’s not only a primer on fuzz testing (a method of finding bugs) but it’s also a ...
InfoWorld

Go fuzz to catch hard-to-find bugs in Go

Native Go fuzz testing tool is now ready for beta testing but won’t be included in upcoming release of the language. Native fuzzing for the Google-created Go language is ready for beta testing, the Go ...
ZDNet

Google expands open-source bounties, will soon support Javascript fuzzing too

Google has expanded its OSS-Fuzz Reward Program to offer rewards of up to $30,000 for researchers who find security flaws in open-source programs. The expanded scope of the program now means the total ...
Security Boulevard

Go fuzzing was missing half the toolkit. We forked the toolchain to fix it.

Go’s native fuzzing is useful, but it stands far behind state-of-the-art tooling that the Rust, C, and C++ ecosystems offer with LibAFL and AFL++. Path constraints are hard to solve. Structured inputs ...