[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] List of Fuzzers
- To: Jeremy Brown <0xjbrown41@xxxxxxxxx>, full-disclosure@xxxxxxxxxxxxxxxxx
- Subject: Re: [Full-disclosure] List of Fuzzers
- From: julio sanchez <pete.sanches@xxxxxxxxx>
- Date: Fri, 6 Mar 2009 13:43:06 -0500
>
>
>
> What have you ever written? Let us see some of your code to poke fun
> of. If it is as imperfect as you then we'd have a day of fun.
If i would release something it will be planified, and inovative, i dont
submit shit for fun or fake fame
>
>
> >What's hilarious is that none of them are usefull :)
>
> http://www.milw0rm.com/author/1531
> http://www.milw0rm.com/author/1835
90% of the research above were found by fuzzing, and those are public.
> Clearly my fuzzers are useful.
>
Wrong.
The IE overhyped bug wasn't found with any of your fuzzers, and also do you
really
need a fuzzer to find a bug in konqueror ?
The rest of theses lists are once again useless bugs, because these software
are used by ~1000 users worldwide.
Let me clarify this: i don't say you cant crash some useless
cnet/download/.com software
with your fuzzer, i only say that you cant beat any widly used software with
your fuzzing methods.
If you really knew what mean "Intelligent Fuzzing", we wouldn't have this
discution right now.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/