Fuzzing Windows

https://github.com/googleprojectzero/winafl

Really good tutorial (original / translated):

https://xakep.ru/2021/11/10/winafl/

https://hackmag.com/security/winafl/

Fuzzing an DLL (loading functions and running it)

https://research.checkpoint.com/2018/50-adobe-cves-in-50-days/

White-Box approach?

https://sec-consult.com/blog/detail/hack-the-hacker-fuzzing-mimikatz-on-windows-with-winafl-heatmaps-0day/

https://www.linkedin.com/pulse/fuzzing-irfanview-win-afl-moshe-kaplan/

https://deepsec.net/docs/Slides/2019/Extracting_a_19-year-old_Code_Execution_from_WinRAR_Nadav_Grossman.pdf

https://www.mcafee.com/blogs/other-blogs/mcafee-labs/analyzing-cve-2021-1665-remote-code-execution-vulnerability-in-windows-gdi/

---

🌱 Back to Garden