Hacking of the world : investigation on expansion of attack vectors
Expansion of attack vectors via fuzzing was achieved by acquiring relevant seeds from a large corpus in a short time span. We present a framework capable of extracting, categorising and managing object streams from fuzzing seeds according to type and relevance. Heuristic function of the framewor...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Final Year Project |
| Language: | English |
| Published: |
2017
|
| Subjects: | |
| Online Access: | http://hdl.handle.net/10356/70511 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Nanyang Technological University |
| Language: | English |
| Summary: | Expansion of attack vectors via fuzzing was achieved by acquiring relevant seeds from a
large corpus in a short time span. We present a framework capable of extracting,
categorising and managing object streams from fuzzing seeds according to type and
relevance.
Heuristic function of the framework was built upon experimentation and investigation into
object streams. The result is a framework capable of processing a 78KB file with multiple
objects in 29 seconds, a vast improvement in comparison to similar average timing for
manual processing of only 1 object. 100 small to medium sized PDF (< 1000KB each) in 49
minutes.
14 seeds processed by framework were fuzzed using Failure Observation Engine (FOE) 2.1,
each with minimum 50k iterations. No crashes were produced. |
|---|