{"guid":"4f94b6e0-3e6c-5b5d-9d47-45c06304c063","title":"(emulate|fuzz|break) kernels","subtitle":null,"slug":"thms-32--emulate-fuzz-break-kernels","link":"http://talx.thm.cloud/thms/talk/QULQKV/","description":"This talk will give an introduction to kernel fuzzing using *unicorefuzz*.\n\nYes, yes. We all know fuzzing is a powerful tool to find bugs.\nFor user space software, this is so 2014. Fuzzing kernels, however, can still be a daunting task.\nThe state of the art kernel fuzzer, syzkaller, is somewhat complex to set up. \nSo many unhappy parsers in the kernel remain unfuzzed to this day!\nWhy can we not simply start fuzzing from some random breakpoint in the kernel, you ask?\nWell of course we can. Let's drop the whole thing into Unicorn Engine, a CPU emulator, and give it input.\nSimple as that.\nTo stay on the punny side of things, we shall call this method *unicorefuzz*.","original_language":"eng","persons":["domenukk"],"tags":["thms","32","Talk"],"view_count":618,"promoted":false,"date":"2019-08-23T00:00:00.000+02:00","release_date":"2019-08-25T02:00:00.000+02:00","updated_at":"2026-03-20T00:15:04.309+01:00","length":1339,"duration":1339,"thumb_url":"https://static.media.ccc.de/media/conferences/camp2019/32-hd.jpg","poster_url":"https://static.media.ccc.de/media/conferences/camp2019/32-hd_preview.jpg","timeline_url":"https://static.media.ccc.de/media/conferences/camp2019/32-hd.timeline.jpg","thumbnails_url":"https://static.media.ccc.de/media/conferences/camp2019/32-hd.thumbnails.vtt","frontend_link":"https://media.ccc.de/v/thms-32--emulate-fuzz-break-kernels","url":"https://api.media.ccc.de/public/events/4f94b6e0-3e6c-5b5d-9d47-45c06304c063","conference_title":"Chaos Communication Camp 2019","conference_url":"https://api.media.ccc.de/public/conferences/camp2019","related":[{"event_id":7251,"event_guid":"b69c19ce-7c89-4afd-9396-ea664f80dba7 ","weight":2},{"event_id":7361,"event_guid":"977957d7-ef42-4ea0-8380-b9a48bd583f0","weight":2},{"event_id":7367,"event_guid":"afbc3b87-4156-470d-9385-c18e7b29f97b","weight":7},{"event_id":7369,"event_guid":"f7df9294-6e67-4def-bf45-441663d489f6","weight":2},{"event_id":7374,"event_guid":"4965ee72-6d7b-4e68-85f7-4d6c4f0c9041","weight":3},{"event_id":7375,"event_guid":"d8db148c-39e4-4f1e-af23-a26a477c82ee","weight":2},{"event_id":7377,"event_guid":"117f530f-a20b-4071-b208-39e989a42408","weight":1},{"event_id":7381,"event_guid":"e988c76b-3a47-46de-a2c7-77c49a5e731b","weight":5},{"event_id":7383,"event_guid":"acc3dd01-bec3-444f-80c1-5dd37f522aa4","weight":1},{"event_id":7384,"event_guid":"8e743367-04a1-4232-ab03-a54fc210e548","weight":6},{"event_id":7387,"event_guid":"8dc5712b-c14d-4aa0-9aa2-e598bbfc6a6d","weight":5},{"event_id":7395,"event_guid":"95a8ea24-a2dd-479f-86fd-6e96ce66a47e","weight":1},{"event_id":7397,"event_guid":"f650773d-d9df-4050-814c-a9505c439b30","weight":6},{"event_id":7413,"event_guid":"4ea406aa-1c4b-5694-b1aa-f86dd3057d8a","weight":4},{"event_id":7415,"event_guid":"5af5134f-a56d-4a42-88e1-d179be98b8db","weight":3},{"event_id":7417,"event_guid":"84c25f65-998a-43a8-bd32-2fe91fe42ff7","weight":7},{"event_id":7424,"event_guid":"d178f21d-4837-4a49-ae27-0f6abf703465","weight":1},{"event_id":7426,"event_guid":"7926f5ba-d424-4523-890b-08736b08a9b9","weight":1},{"event_id":7429,"event_guid":"6d0b0f86-3969-4cd9-974f-69ba90cfce64","weight":1},{"event_id":7433,"event_guid":"078e6819-edca-4b0a-a417-a964a9c08ce3","weight":4},{"event_id":7435,"event_guid":"65d27021-12c5-4e4c-8cfd-20c50ec9795a","weight":2},{"event_id":7436,"event_guid":"2d4d7279-ed46-431f-919b-ed5dccfd7c90","weight":6},{"event_id":7438,"event_guid":"d6b8d105-2540-5f33-955a-f73ae31831ca","weight":2},{"event_id":7441,"event_guid":"e1cba2cc-d83f-44dc-869e-51fdfc628563","weight":4},{"event_id":7447,"event_guid":"f828fab4-661b-4b16-836c-cdf786550e4d","weight":5},{"event_id":7450,"event_guid":"cd241757-8364-4eb1-8173-f049b54efca7","weight":3},{"event_id":7452,"event_guid":"f86ec299-33c8-52ec-a207-62a444e8acbf","weight":1},{"event_id":7454,"event_guid":"da999f3a-edf0-590a-85f8-37cb00cf21d9","weight":4},{"event_id":7457,"event_guid":"879d54a4-a90e-5e0d-8c56-c189ba166c72","weight":4}],"recordings":[{"size":134,"length":1339,"mime_type":"video/mp4","language":"eng","filename":"thms-32-eng-emulate_fuzz_break_kernels_hd.mp4","state":"new","folder":"h264-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2019-08-25T19:40:25.044+02:00","recording_url":"https://cdn.media.ccc.de/events/camp2019/h264-hd/thms-32-eng-emulate_fuzz_break_kernels_hd.mp4","url":"https://api.media.ccc.de/public/recordings/37837","event_url":"https://api.media.ccc.de/public/events/4f94b6e0-3e6c-5b5d-9d47-45c06304c063","conference_url":"https://api.media.ccc.de/public/conferences/camp2019"},{"size":20,"length":1328,"mime_type":"audio/mpeg","language":"eng","filename":"thms-32-eng-emulate_fuzz_break_kernels_mp3.mp3","state":"new","folder":"mp3","high_quality":false,"width":0,"height":0,"updated_at":"2019-08-25T19:45:10.229+02:00","recording_url":"https://cdn.media.ccc.de/events/camp2019/mp3/thms-32-eng-emulate_fuzz_break_kernels_mp3.mp3","url":"https://api.media.ccc.de/public/recordings/37839","event_url":"https://api.media.ccc.de/public/events/4f94b6e0-3e6c-5b5d-9d47-45c06304c063","conference_url":"https://api.media.ccc.de/public/conferences/camp2019"},{"size":49,"length":1339,"mime_type":"video/mp4","language":"eng","filename":"thms-32-eng-emulate_fuzz_break_kernels_sd.mp4","state":"new","folder":"h264-sd","high_quality":false,"width":720,"height":576,"updated_at":"2019-08-25T19:45:40.886+02:00","recording_url":"https://cdn.media.ccc.de/events/camp2019/h264-sd/thms-32-eng-emulate_fuzz_break_kernels_sd.mp4","url":"https://api.media.ccc.de/public/recordings/37840","event_url":"https://api.media.ccc.de/public/events/4f94b6e0-3e6c-5b5d-9d47-45c06304c063","conference_url":"https://api.media.ccc.de/public/conferences/camp2019"},{"size":14,"length":1328,"mime_type":"audio/opus","language":"eng","filename":"thms-32-eng-emulate_fuzz_break_kernels_opus.opus","state":"new","folder":"opus","high_quality":false,"width":0,"height":0,"updated_at":"2019-08-25T19:46:00.230+02:00","recording_url":"https://cdn.media.ccc.de/events/camp2019/opus/thms-32-eng-emulate_fuzz_break_kernels_opus.opus","url":"https://api.media.ccc.de/public/recordings/37842","event_url":"https://api.media.ccc.de/public/events/4f94b6e0-3e6c-5b5d-9d47-45c06304c063","conference_url":"https://api.media.ccc.de/public/conferences/camp2019"},{"size":74,"length":1339,"mime_type":"video/webm","language":"eng","filename":"thms-32-eng-emulate_fuzz_break_kernels_webm-sd.webm","state":"new","folder":"webm-sd","high_quality":false,"width":720,"height":576,"updated_at":"2019-08-25T19:52:39.342+02:00","recording_url":"https://cdn.media.ccc.de/events/camp2019/webm-sd/thms-32-eng-emulate_fuzz_break_kernels_webm-sd.webm","url":"https://api.media.ccc.de/public/recordings/37848","event_url":"https://api.media.ccc.de/public/events/4f94b6e0-3e6c-5b5d-9d47-45c06304c063","conference_url":"https://api.media.ccc.de/public/conferences/camp2019"},{"size":212,"length":1339,"mime_type":"video/webm","language":"eng","filename":"thms-32-eng-emulate_fuzz_break_kernels_webm-hd.webm","state":"new","folder":"webm-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2019-08-25T19:58:59.090+02:00","recording_url":"https://cdn.media.ccc.de/events/camp2019/webm-hd/thms-32-eng-emulate_fuzz_break_kernels_webm-hd.webm","url":"https://api.media.ccc.de/public/recordings/37854","event_url":"https://api.media.ccc.de/public/events/4f94b6e0-3e6c-5b5d-9d47-45c06304c063","conference_url":"https://api.media.ccc.de/public/conferences/camp2019"}]}