FuzzingLabs Academy/Introduction to Go fuzzing

  • Free

Introduction to Go fuzzing

    Learn how to fuzz a Golang package using go-fuzz. 📦 Source code, 📝 Cheatsheet & 🎞️ Video

    What you'll learn

    This FREE course is an introduction to Golang fuzzing. Over multiple videos, you will discover how to fuzz Go code and find issues in some famous Go libraries.

    More videos will come in the future so don't forget to accept emails communication to be aware of when new videos will arrive. If you want to make any proposal, please contact me using the website chatbox or by mail at fuzzinglabs@gmail.com.

    1. Fuzzing Go package using go-fuzz & libfuzzer

    In this course, I will first select a popular Golang library and identify the most interesting methods to fuzz. Then, I’ll explains how to use go-fuzz and libfuzzer to compile our fuzzing target. Finally, I’ll show how to run the fuzzer.

    2. How I found 3 bugs inside Google's Go codebase using Fuzzing?

    In this second Go fuzzing course, I will use the famous go-fuzz fuzzer to find bugs inside the official debug/efl library. I will first identify one interesting method to fuzz and then write a fuzzing harness. Finally, I’ll run the fuzzer and show you some of the bugs triggered.

    What's included?

    Fuzzing Go package using go-fuzz & libfuzzer

    Video: Complete step-by-step tutorial
      Cheatsheet_fuzzing_golang_go-fuzz.md
      • 1.15 KB
      golang_fuzzing_go-fuzz.zip
      • 3.05 MB

      How I found 3 bugs inside Google Go codebase using Fuzzing with go-fuzz

      Video: Complete step-by-step tutorial
        Cheatsheet_fuzzing_elf_go_fuzz.md
        • 2.47 KB
        golang_fuzzing_go_fuzz.zip
        • 14 MB

        • $2,400

        Go Security Audit and Fuzzing

        • Bundle
        • 3 Products

        Learn which kind of security vulnerabilities/bugs can be found inside Go code, how to detect them statically and automatically using fuzzing techniques. 🎞️ 90 videos / ⏱️ 7.5 hours / 👨‍💻 25+ exercises

        Meet Your Instructor

        Hey! 👋 My name is Patrick and I'm the founder of FuzzingLabs, a research-oriented security company specializing in fuzzing, vulnerability research, and reverse engineering.

        Over time, we found hundreds of bugs and presented our work at various security conferences around the globe, including BlackHat USA, OffensiveCon, REcon, Devcon, EthCC, RingZer0, ToorCon, hack.lu, NorthSec, Microsoft DCC, etc.

        You can read more about me by clicking here.

        FREE Resources & Trainings

        Enter your email to receive special deals and a bundle of awesome resources. 100% free - 100% awesome. 👇

        You're signing up to receive emails from FuzzingLabs Academy