Locked in our houses due to current circumstances, it’s crucial to have a pet project to stay sane. Inspired by tweets that are insane, a short series on creating a simple fuzzer from scratch has been initiated. While it’s not practical for actual use with many great fuzzers available, the belief is understanding comes from disassembling/recreating. Leveraging previous works like ‘Fuzzing like a Caveman’, the focus is on security. Using Python instead of languages like C/C++ or Rust commonly used for fuzzers, the goal is to create crashes quickly. The main components – mutation and execution engine, are essential in uncovering vulnerabilities. Expect more improvements and coverage measurements in the upcoming parts.
https://carstein.github.io/fuzzing/2020/04/18/writing-simple-fuzzer-1.html