LiveOverflow | Finding The .webp Vulnerability in 8s (Fuzzing with AFL++) @LiveOverflow | Uploaded 8 months ago | Updated 1 hour ago
A guide on how to do fuzzing with AFL++ in an attempt to rediscover the libwebp vulnerability CVE-2023-4863 that was used to hack iPhones.
Want to learn hacking? Signup to hextree.io (ad)
Buy my shitty font: shop.liveoverflow.com (ad)
Watch webp Part 1: youtube.com/watch?v=lAyhKaclsPM
Sudo Vulnerability Series: youtube.com/playlist?list=PLhixgUqwRTjy0gMuT4C3bmjeZjuNQyqdx
Docker Video: youtube.com/watch?v=-YnMr1lj4Z8
OSS-Fuzz: github.com/google/oss-fuzz
OSS-Fuzz libwebp coverage: storage.googleapis.com/oss-fuzz-coverage/libwebp/reports/20230901/linux/src/libwebp/src/utils/report.html
AFLplusplus: github.com/AFLplusplus/AFLplusplus/blob/stable/docs/fuzzing_in_depth.md
vanhauser's blog: https://www.srlabs.de/blog-post/advanced-fuzzing-unmasks-elusive-vulnerabilities
vanhauser/thc on twitter: twitter.com/hackerschoice
AFLpluslus Persistent Mode: github.com/AFLplusplus/AFLplusplus/blob/0c054f520eda67b7bb15f95ca58c028e9b68131f/instrumentation/README.persistent_mode.md
Grab the code: github.com/LiveOverflow/webp-CVE-2023-4863
=[ β€οΈ Support ]=
Find out how you can support LiveOverflow: liveoverflow.com/support
=[ π Social ]=
β 2nd Channel: youtube.com/LiveUnderflow
β Twitter: twitter.com/LiveOverflow
β Streaming: https://twitch.tvLiveOverflow/
β TikTok: tiktok.com/@liveoverflow_
β Instagram: instagram.com/LiveOverflow
β Blog: liveoverflow.com
β Subreddit: reddit.com/r/LiveOverflow
β Facebook: facebook.com/LiveOverflow
Chapters:
00:00 - Intro
00:36 - How to Learn About Fuzzing?
02:36 - Setting Up Fuzzing With AFL++
04:53 - My Docker Workflow for Fuzzing
06:35 - AFL++ Different Coverage Strategies
09:50 - Start the libwebp Fuzzing Campaign
11:58 - Adjusting the Fuzzer
13:45 - Why Don't We Find a Crash?
15:49 - Fuzzing with AFL++ Persistent Mode
19:47 - Persistent Mode Fuzzing Results
20:46 - Finding the Vulnerability in 8s
A guide on how to do fuzzing with AFL++ in an attempt to rediscover the libwebp vulnerability CVE-2023-4863 that was used to hack iPhones.
Want to learn hacking? Signup to hextree.io (ad)
Buy my shitty font: shop.liveoverflow.com (ad)
Watch webp Part 1: youtube.com/watch?v=lAyhKaclsPM
Sudo Vulnerability Series: youtube.com/playlist?list=PLhixgUqwRTjy0gMuT4C3bmjeZjuNQyqdx
Docker Video: youtube.com/watch?v=-YnMr1lj4Z8
OSS-Fuzz: github.com/google/oss-fuzz
OSS-Fuzz libwebp coverage: storage.googleapis.com/oss-fuzz-coverage/libwebp/reports/20230901/linux/src/libwebp/src/utils/report.html
AFLplusplus: github.com/AFLplusplus/AFLplusplus/blob/stable/docs/fuzzing_in_depth.md
vanhauser's blog: https://www.srlabs.de/blog-post/advanced-fuzzing-unmasks-elusive-vulnerabilities
vanhauser/thc on twitter: twitter.com/hackerschoice
AFLpluslus Persistent Mode: github.com/AFLplusplus/AFLplusplus/blob/0c054f520eda67b7bb15f95ca58c028e9b68131f/instrumentation/README.persistent_mode.md
Grab the code: github.com/LiveOverflow/webp-CVE-2023-4863
=[ β€οΈ Support ]=
Find out how you can support LiveOverflow: liveoverflow.com/support
=[ π Social ]=
β 2nd Channel: youtube.com/LiveUnderflow
β Twitter: twitter.com/LiveOverflow
β Streaming: https://twitch.tvLiveOverflow/
β TikTok: tiktok.com/@liveoverflow_
β Instagram: instagram.com/LiveOverflow
β Blog: liveoverflow.com
β Subreddit: reddit.com/r/LiveOverflow
β Facebook: facebook.com/LiveOverflow
Chapters:
00:00 - Intro
00:36 - How to Learn About Fuzzing?
02:36 - Setting Up Fuzzing With AFL++
04:53 - My Docker Workflow for Fuzzing
06:35 - AFL++ Different Coverage Strategies
09:50 - Start the libwebp Fuzzing Campaign
11:58 - Adjusting the Fuzzer
13:45 - Why Don't We Find a Crash?
15:49 - Fuzzing with AFL++ Persistent Mode
19:47 - Persistent Mode Fuzzing Results
20:46 - Finding the Vulnerability in 8s
