Vulnerability Research on Windows binaries

Presented at Nuit du Hack 2015, June 20, 2015, 6:30 p.m. (45 minutes)

During the talk I will speak about Windows Vulnerability Research. We will see the current limitations of fuzzing without knowledge of the targeted struct and some answers has been brought by AFL fuzzer. But AFL is available only on Linux and we need the target binary sources to use it.So I developed a personal AFL-like that allows me to fuzz Windows without having binary sources. This allows to fuzz without knowing the format used. So I will introduce how my tool works.

Presenters:

• Stéfan Le Berre (HEURS)
  Heurs is a security researcher specialized in Windows kernel, bug hunting and exploitation.

Links:

• https://2015.nuitduhack.com/en/talks.html#heurs
• https://infocon.org/cons/Nuit Du Hack/NDH2K15/Hackerzvoice NDH2k15 Talks Stefan Le Berre HEURS Vulnerability Research on Windows binaries.mp4
• https://www.youtube.com/watch?v=IexI5hIY6A0

Similar Presentations:

• Black Hat USA 2018 / AFL's Blindspot and How to Resist AFL Fuzzing for Arbitrary ELF Binaries
• HOPE 2020 Virtual Rescheduled / Hunting Bugs in Your Sleep - How to Fuzz (Almost) Anything With AFL/AFL++
• DEF CON 27 (2019) / Zero bugs found? Hold my Beer AFL! How To Improve Coverage-Guided Fuzzing and Find New 0days in Tough Targets