PDA

View Full Version : Any Links/resource which can help me to learn browser fuzzing?



41.w4r10r
04-15-2014, 08:51 PM
[Q] Any Links/resource which can help me to learn browser fuzzing?

Ans: Yes there are lots of links,resources available on web you need to use google properly. some of the quick guides can be:

https://code.google.com/p/browsersec/wiki/Main

https://docs.google.com/viewer?a=v&pid=sites&srcid=ZGVmYXVsdGRvbWFpbnx0ZW50YWNvbG92aW9sYXxneDo1 MTgyOTgyYmUyYWY3MWQy

https://sites.google.com/site/tentacoloviola/fuzzing-with-dom-level-2-and-3

https://www.squarefree.com/categories/fuzzing/

b0nd
08-26-2014, 01:00 PM
Learning Exploitation with FSExploitMe


http://blog.opensecurityresearch.com/2014/08/learning-exploitation-with-fsexploitme.html


Lesson 1 - Learning WinDBG
Lesson 1 is entirely dedicated to WinDBG since it is so important to the whole exploitation process. The questions will require you to set breakpoints, dig into memory, and execute some common commands to obtain answers.


Lesson 2 - Stack-Based Overflow
Lesson 2 is focused around exploiting a basic stack-based overflow. The questions require you to understand how the stack operates, how to triage a stack-based overflow and finally how to exploit the condition. The first round walks you through the exploitation, the second is a bit harder - there is no walkthrough and it requires the use of IDA.


Lesson 3 - Use-After-Free on the Heap
Lesson 3 walks you through a use-after-free vulnerability on the heap. The questions help you understand how data is stored on the heap, how virtual function tables and pointers are structured, how to triage a use-after-free and finally how to exploit it. This very much mimics a traditional browser use-after-free and should get you on the right track when you have to tackle a real-world vulnerability.


Upcoming Lessons
The next few lessons that will be written will focus on bypassing exploit mitigations! Stay tuned!
The next few lessons that will be written will focus on bypassing exploit mitigations! Stay tuned!

b0nd
08-28-2014, 12:45 PM
Fileja (released in Aug 2014):
https://sites.google.com/site/tentacoloviola/fileja-fuzzer

The same author release 'nduja' in 2013:
https://sites.google.com/site/tentacoloviola/fuzzing-with-dom-level-2-and-3

Grab the source code & play with it.

Cheers1