Add Stefan's GrrCon 2019 talk about symbolically executing a fuzz tar…

…get.
trailofbits · Nov 22, 2019 · a689460 · a689460
1 parent f930379
commit a689460
Show file tree

Hide file tree

Showing 2 changed files with 15 additions and 0 deletions.
diff --git a/presentations/Symbolically Executing a Fuzzy Tyrant/README.md b/presentations/Symbolically Executing a Fuzzy Tyrant/README.md
@@ -0,0 +1,15 @@
+Symbolically Executing a Fuzzy Tyrant
+====================================
+
+Code reviewers and penetration testers are familiar with the normal dynamic and static application security tools (DAST|SAST). These tools can provide varying levels of coverage with varying levels of false/true positives. However, there are other classes of tools that can provide deeper understanding and more vulnerabilities in the same amount of time as traditional tools. This talk covers two such classes: (smart) fuzzers and symbolic execution. As a practicum, it is focused on every-day scenarios that normal security analysts face, rather than theoretical attacks in an academic setting. The author’s current setup is provided as an example.
+
+Presented at
+
+* [GrrCon 2019](http://grrcon.com/schedule/) 
+
+Resources
+
+* Slides: [Symbolically Executing a Fuzzy Tyrant](symbolically_executing_a_fuzzy_tyrant.pdf)
+
+Authors
+* Stefan Edwards
diff --git a/...entations/Symbolically Executing a Fuzzy Tyrant/symbolically_executing_a_fuzzy_tyrant.pdf b/...entations/Symbolically Executing a Fuzzy Tyrant/symbolically_executing_a_fuzzy_tyrant.pdf