From the course: Machine Learning for Red Team Hackers by Infosec
Join today to access over 24,700 courses taught by industry experts.
Fuzzing with AFL
From the course: Machine Learning for Red Team Hackers by Infosec
Fuzzing with AFL
(calm music) - [Instructor] In this lesson I'm going to show you how to use AFL. Now AFL stands for American Fuzzy Lop and is one of the top fuzzers, if not the best fuzzer at the moment. And it uses genetic algorithms just like we discussed earlier. To install it, it's pretty easy. You just open up your terminal and use a package manager. Now I have on my desktop a target program. It's relatively simple C program that has a well-known vulnerability. What it does is take in your username and your password, check if the username is admin, if it is, it will also check your password against this sequence of letters and numbers. And if it is equal to that, then you'll get access. Otherwise, your access will be denied. So I'm going to fuzz it using AFL. The way AFL works, we'll use AFL to compile this program, which allows to inject AFL's code and then instrument the program and monitor and see what's going on. So let's see how this works. I'm going to go to the directory of my target and…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.