Introduction to Browser Fuzzing

Learn how to fuzz web-browser (Google V8, Firefox, etc) using multiple fuzzing techniques
📖 Source codes, 📝 Cheatsheets & 🎞️ Videos

Enroll Now

What you'll learn

This FREE course is an introduction to Web-browser Fuzzing.

More videos will come in the future so don't forget to accept emails communication to be aware of when new videos will arrive. If you want to make any proposal, please contact me using the website chatbox or by mail at fuzzinglabs@gmail.com.

Fuzzing Google V8 JavaScript Engine with Dharma (WebAssembly APIs)

In this course, I will first detailed which WebAssembly Javascript APIs are supported by major browsers. Then, I’ll explains how to use Dharma to generate valid Javascript file to fuzz WebAssembly APIs. Finally, I’ll show you an easy way to execute those generated testcases over ASAN build of Chrome/V8 engine.

Fuzzing Firefox using In-process Fuzzing with Frida

As asked by a lot of you, today's video is about browser security. First I will show how to download easily Firefox compiled with AddressSanitizer. Then, I will show how to use Frida to list all modules and exports of Firefox. I will show some other interesting scripts and finally, I will demonstrate how to operate in-process fuzzing i.e. modifying the data provided to a given function.

Fuzzing Browser's DOM using FreeDom grammar-based fuzzer

In this video, I will first explain how to download Chrome ASAN build. Then, I’ll detail what is DOM (Document Object Model) and how it is used by web browsers. I'll use the FreeDom grammar-based fuzzer to generate some HTML files and create a simple script to process all those files inside chrome. Finally, I’ll show you a tip to speed up your fuzzing.

Top 4 Books to learn Web Browser Security

Today, I discuss my favorite books if you are looking to learn more about Web Browser internals and Browser security.

Introduction to V8 JavaScript Engine Grammar-based Fuzzing [WORKSHOP]

In this short hands-on workshop, we will attack the V8 JavaScript Engine using grammar-based fuzzing. First, I will show how to download a version of V8 already compiled with addressSanitizer (ASAN). Then, I will introduce how to write a Dharma grammar and finally, we will use some simple scripts to start automation. Most of what you will learn during this workshop can be applied in other JavaScript engines like SpiderMonkey, JavaScriptCore, etc.

What's included?

Fuzzing Google V8 JavaScript Engine with Dharma (WebAssembly APIs)

Video: Complete step-by-step tutorial

PDF: Fuzzing_V8_JavaScript_WebAssembly_APIs_With_Dharma.pdf

564 KB

Cheatsheet : All the commands for the tutorial

736 Bytes

Dharma grammar: wasm.dg

6.71 KB

Fuzzing Firefox ASAN build using In-process fuzzing with Frida

Video: Complete step-by-step tutorial

Cheatsheet_fuzzing_firefox_browser_frida.md

7.98 KB

frida_browser_fuzz.zip

5.15 KB

Fuzzing Browser's DOM using FreeDom grammar-based fuzzer

Video: Complete step-by-step tutorial

Cheatsheet_dom_fuzzing_freedom.md

3.74 KB

dom_fuzzing_freedom.zip

2.28 MB

Top 4 Books to learn Web Browser Security in 2022

Video

Introduction to V8 JavaScript Engine Grammar-based Fuzzing [WORKSHOP]

Video: Complete step-by-step tutorial

Introduction to V8 JavaScript Engine Grammar-based Fuzzing.pdf

2.8 MB

intro_v8_grammar_fuzzing.zip

2.41 MB

Meet Your Instructor

Hey! 👋 My name is Patrick and I'm the founder of FuzzingLabs, a research-oriented security company specializing in fuzzing, vulnerability research, and reverse engineering.

Over time, we found hundreds of bugs and presented our work at various security conferences around the globe, including BlackHat USA, OffensiveCon, REcon, Devcon, EthCC, RingZer0, ToorCon, hack.lu, NorthSec, Microsoft DCC, etc.

You can read more about me by clicking here.

X Linked_in Youtube Website Mail

FREE Resources & Trainings

Enter your email to receive special deals and a bundle of awesome resources. 100% free - 100% awesome. 👇