← All talks

Fuzzing Ruby and C Extensions

BSidesSF · 201833:10388 viewsPublished 2018-04Watch on YouTube ↗
Speakers
Claudio Contin
Tags
CategoryTechnical
StyleTalk
About this talk
Claudio Contin - Fuzzing Ruby and C Extensions Intro to fuzzing, and specifics in Ruby lang:, security implications of vulnerabilities that might be found (ex: https://hackerone.com/reports/499). Intro to AFL fuzzer, basic concepts on how it works, and how to run it against Ruby lang, and potentially target gems with C extensions.

Related talks

28:29
The IoT Hacker's Toolkit
BSidesSF · 2018
29:24
No More XSS: Deploying CSP with nonces and strict-dynamic
BSidesSF · 2018
30:17
Lyft Cartography: Automating Security Visibility and Democratization
BSidesSF · 2019
38:53
Bypassing malware analysis sandboxes is easy, let's discuss how they are doing it and why it works
BSidesSF · 2017
32:39
Navigating Passwordless Authentication with FIDO2 & WebAuthn
BSidesSF · 2019
32:41
Offensive Javascript Techniques for Red Teamers
BSidesSF · 2019