This course aims to teach learners how to find bugs through event-based fuzzing, patch-based research, and comment police techniques. The course covers approaches to identifying vulnerabilities in both mature and customized products, leading to the development of targeted fuzzers and specific CodeQL/Weggli rules. The teaching method involves practical examples and case studies to illustrate bug hunting strategies. This course is intended for security researchers and professionals looking to enhance their bug-finding skills and deepen their understanding of security vulnerability analysis.
Overview
Syllabus
Event-based Fuzzing, Patch-based Research, and Comment Police: Finding Bugs Through a Bug
Taught by
Black Hat