video thumbnail 24:11
Finding The .webp Vulnerability in 8s (Fuzzing with AFL++)

2024-01-22

[public] 23.7K views, 2.44K likes, dislikes audio only

channel thumbLiveOverflow

A guide on how to do fuzzing with AFL++ in an attempt to rediscover the libwebp vulnerability CVE-2023-4863 that was used to hack iPhones.

Want to learn hacking? Signup to https://hextree.io (ad)

Buy my shitty font: https://shop.liveoverflow.com/ (ad)

Watch webp Part 1: /youtube/video/lAyhKaclsPM

Sudo Vulnerability Series: https://www.youtube.com/playlist?list=PLhixgUqwRTjy0gMuT4C3bmjeZjuNQyqdx

Docker Video: /youtube/video/-YnMr1lj4Z8

OSS-Fuzz: https://github.com/google/oss-fuzz

OSS-Fuzz libwebp coverage: https://storage.googleapis.com/oss-fuzz-coverage/libwebp/reports/20230901/linux/src/libwebp/src/utils/report.html

AFLplusplus: https://github.com/AFLplusplus/AFLplusplus/blob/stable/docs/fuzzing_in_depth.md

vanhauser's blog: https://www.srlabs.de/blog-post/advanced-fuzzing-unmasks-elusive-vulnerabilities

vanhauser/thc on twitter: https://twitter.com/hackerschoice

AFLpluslus Persistent Mode: https://github.com/AFLplusplus/AFLplusplus/blob/0c054f520eda67b7bb15f95ca58c028e9b68131f/instrumentation/README.persistent_mode.md

Grab the code: https://github.com/LiveOverflow/webp-CVE-2023-4863

=[ ❤️ Support ]=

Find out how you can support LiveOverflow: https://liveoverflow.com/support/

=[ 🐕 Social ]=

→ 2nd Channel: https://www.youtube.com/LiveUnderflow

→ Twitter: https://twitter.com/LiveOverflow/

→ Streaming: https://twitch.tvLiveOverflow/

→ TikTok: https://www.tiktok.com/@liveoverflow_

→ Instagram: https://instagram.com/LiveOverflow/

→ Blog: https://liveoverflow.com/

→ Subreddit: https://www.reddit.com/r/LiveOverflow/

→ Facebook: https://www.facebook.com/LiveOverflow/

Chapters:

00:00 - Intro

00:36 - How to Learn About Fuzzing?

02:36 - Setting Up Fuzzing With AFL++

04:53 - My Docker Workflow for Fuzzing

06:35 - AFL++ Different Coverage Strategies

09:50 - Start the libwebp Fuzzing Campaign

11:58 - Adjusting the Fuzzer

13:45 - Why Don't We Find a Crash?

15:49 - Fuzzing with AFL++ Persistent Mode

19:47 - Persistent Mode Fuzzing Results

20:46 - Finding the Vulnerability in 8s


Intro
/youtube/video/PJLWlmp8CDM?t=0
How to Learn About Fuzzing?
/youtube/video/PJLWlmp8CDM?t=36
Setting Up Fuzzing With AFL
/youtube/video/PJLWlmp8CDM?t=156
My Docker Workflow for Fuzzing
/youtube/video/PJLWlmp8CDM?t=293
AFL++ Different Coverage Strategies
/youtube/video/PJLWlmp8CDM?t=395
Start the libwebp Fuzzing Campaign
/youtube/video/PJLWlmp8CDM?t=590
Adjusting the Fuzzer
/youtube/video/PJLWlmp8CDM?t=718
Why Don't We Find a Crash?
/youtube/video/PJLWlmp8CDM?t=825
Fuzzing with AFL++ Persistent Mode
/youtube/video/PJLWlmp8CDM?t=949
Persistent Mode Fuzzing Results
/youtube/video/PJLWlmp8CDM?t=1187
Finding the Vulnerability in 8s
/youtube/video/PJLWlmp8CDM?t=1246
Reinventing Web Security 34,995 views
/youtube/video/LxUAnZY_08o
Support liveoverflow.com
https://liveoverflow.com/support
A Vulnerability to Hack The World - CVE-2023-4863 94,174 views
/youtube/video/lAyhKaclsPM