[fuzzing] CSI Podcast: The Buzz on Fuzzing (fwd)

[Heikki Kortti]

On Wed, Dec 05, 2007 at 07:37:29PM -0600, Gadi Evron wrote:

> That does it, we are mainstream.
> 
> I suppose I can rest now, corporate evangelism is tiring. To other 
> subjects, hopefully more technical.

There there now, 

surely one measly 15-minute CSI podcast done by a linguistically
challenged guy with absolutely no technical credentials from some
obscure company in Finland does not count as mainstream. Hell, it's
nothing compared to the quinteen other podcasts from us and Mu, three
books (two out, one forthcoming) including one from yourself and Noam,
Google hiring Michal to do Bunny, and the 10^28 conference
presentations of varying quality just this year. But hey, thanks for
the plug, didn't know anyone actually follows these podcasts.

While we're at the topic of marketing, I'm just waiting for someone to
coin the term Fuzzing 2.0. Mu already claims they have the "third
generation" of their fuzzing PC out (whatever that means), and I seem
to remember BS also promoting a "second-generation fuzzer" already a
while back, so maybe it's straight to Fuzzing 4.0 then ;-) 

ObContent: 

Nice work on RFID fuzzing from Melanie Rieback's and Andy Tanenbaum's
team at Vrije Universiteit Amsterdam, can't remember if this has been
posted to the list already at some point:

<URL:http://www.rfidguardian.org/index.php/RFID_Fuzzing>

Also, here's yet another good presentation on WLAN fuzzing I saw at
DeepSec a few weeks back, including a novel idea of slowing down those
pesky 802.11 timing intervals by running the test subject in a virtual
machine and skewing the clock frequency for fun and profit:

<URL:http://www.seclab.tuwien.ac.at/projects/vifuzz/index.html>

Cheers to Sylvester and Clemens, catch you next time :)

-- 
Heikki