Thanks for writing such a wonderful post on boofuzz.
Vishal Mishra
11

Vishal, Thank you! Good to hear that it was helpful. Yes, one can fuzz those protocols. There are no published tests that I know of, so you’ll need to write your own. If you’re able to share it with the community, please do! ☺

You can use s_byte, s_word, s_dword, s_qword for binary fields. If you need more than that, you can also use s_bit_field for arbitrary lengths.

The SocketConnection constructor takes several protocols, including udp, tcp, and ssl. So you should be able to get started quickly. Happy fuzzing!

Like what you read? Give Joshua Pereyda a round of applause.

From a quick cheer to a standing ovation, clap to show how much you enjoyed this story.