A software engineer focusing on fuzzers, exploits, and mitigations for Linux and Android kernels.
A Telegram channel about Linux kernel security. Me and Alexander Popov regularly post links to materials about exploits, fuzzers, migitations, and other security-related things there.
[There is an English-dubbed recording of this talk as well.]
A talk about using fuzzing for finding vulnerabilities in the the Linux kernel. I briefly cover ready-to-use fuzzers (such as Trinity and syzkaller) but mainly focus on the underlying parts: writing fuzzing harnesses, generating inputs, and collecting coverage.
This is an extended version of the talk I gave as a part of the Linux Foundation Mentorship Series.
Обзорная статья про подходы к фаззингу ядра Linux. Написана вместе с редакцией журнала «Хакер» по мотивам моего доклада с PHDays 20201.