Technical Report: Stateful Fuzzer

Humberto Abdelnur 1 Radu State 1 Olivier Festor 1
1 MADYNES - Management of dynamic networks and services
INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : With the recent evolution in the VoIP market, where more and more devices and services are being pushed on a very promising market, assuring their security becomes crucial. Among the most dangerous threats to VoIP, failures and bugs in the software implementation will still rank high on the list of vulnerabilities. In this paper we address the issue of detecting such vulnerabilities using a stateful fuzzer. We describe an automated attack approach capable to self-improve and to track the state context of a target device. We implemented our approach and were able to discover vulnerabilities in market leading and well known equipments and software.
Type de document :
Rapport
[Research Report] 2007, pp.10
Liste complète des métadonnées

Littérature citée [12 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/inria-00141133
Contributeur : Humberto Abdelnur <>
Soumis le : mercredi 11 avril 2007 - 16:23:55
Dernière modification le : jeudi 11 janvier 2018 - 06:19:49
Document(s) archivé(s) le : vendredi 21 septembre 2012 - 14:05:29

Fichier

Stateful_Fuzzer_Report.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : inria-00141133, version 1

Collections

Citation

Humberto Abdelnur, Radu State, Olivier Festor. Technical Report: Stateful Fuzzer. [Research Report] 2007, pp.10. 〈inria-00141133〉

Partager

Métriques

Consultations de la notice

211

Téléchargements de fichiers

197