Mayhem Blog

Learn about the quality assurance technique that uncovers coding errors and security loopholes during software vulnerability testing and assurance processes.

Tamulyn Takakura, ForAllSecure's Head of Marketing, reflects on the company's journey from DARPA CGC winner, to MIT's 50 Smartest Companies, to RSA ISB top 10 finalist.

Fuzz testing is an effective technique for uncovering serious defects in software. From the Heartbleed vulnerability in 2014 to the infamous Jeep Cherokee hacking in 2015, fuzz testing is the technique that has made many high-profile discoveries possible. Consistently, fuzzing is proven to be a powerful tool for ensuring the ...

ForAllSecure researcher, Guido Vranken, uncovers critical memory issue in cereal, a common component within automotive software.

ForAllSecure Engineer, Tyler Nighswander, uncovers vulnerabilities in two popular cryptographic libraries, MatrixSSL and WolfSSL, utilizing Mayhem, a next-generation fuzzer.

Cyber offense and defense isn’t chess. It’s a game of poker. In chess, you have complete visibility into your opponent’s position and moves. In poker, you lack that visibility, which also happens in the cyber realm.

In 2016, Mayhem -- then still a research prototype -- showed that fully autonomous cybersecurity was possible. This was just the first step. Today, I’m thrilled to announce the next phase in the ForAllSecure journey.

Six months ago ForAllSecure started analyzing Docker images. What does this mean? Imagine we have a user who wants us to fuzz their application. How do they give it to us? Do they tar it up? Do they give us access to an environment where it’s running?

On April 24, ForAllSecure CEO David Brumley joins Decipher Security host, Dennis Fisher, to talk about the importance of software security as well as the need for better cooperation between developers and security teams.