Loading…
Timezone
In-person + Virtual
October 24-28
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon North America 2022 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Eastern Daylight Time (UTC -4). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.
Back To Schedule
Friday, October 28 • 4:00pm - 4:35pm
Fuzzing Session: Finding Bugs and Vulnerabilities Automatically - David Korczynski & Adam Korczynski, Ada Logics

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Feedback form is now closed.
In this session Adam and David invites attendees to an in-depth look at fuzzing starting with the basics and moving on to advanced topics. The presentation will focus on fuzzing open source software and cover why it is important to fuzz your software by way of brief introductions followed by a series of case studies.

Fuzzing is a technique to automate testing software for bugs and vulnerabilities. Fuzzing is performed by writing a test harness that passes seemingly pseudo-random data to a target application with the goal of finding bugs and vulnerabilities. Adam and David have written fuzzers for more than 200 open source projects which have led to finding thousands of bugs of which many were security-critical.

The presentation will also cover important open-source projects related to fuzzing such as OSS-Fuzz and Fuzz Introspector.

This talk is aimed at a broad audience including those who are new to fuzzing as well as those with some fuzzing experience.
Speakers
avatar for David Korczynski

David Korczynski

Security Researcher, Ada Logics
David Korczynski is a security researcher at Ada Logics and his focus is on building tools that automate software security analysis. In the open source community David is a top contributor to OSS-Fuzz and has worked on fuzzing several CNCF projects, e.g. Fluent Bit, Envoy and Linkerd2-proxy... Read More →
avatar for Adam Korczynski

Adam Korczynski

Security Engineer, Ada Logics
Adam is a security engineer at Ada Logics where his work mainly focuses on security automation. Recently Adam has contributed significantly to fuzzing projects within the CNCF landscape, including, Kubernetes, Etcd, Vitess, Containerd, Argo, Flux and more. Adam is heavily involved... Read More →

Friday October 28, 2022 4:00pm - 4:35pm EDT
Portside Ballroom (Room 260)
  Security + Identity + Policy