Mayhem Case Studies

For three years OpenWRT had a severe validation problem with its download package manager, until a fuzz tester found and reported the vulnerability. In this episode, Guido Vranken talks about his approach to hacking, about the differences between memory safe and unsafe languages, and more.

If you haven’t given much thought on what holiday gift to get the fuzzing pro in your life, fear not! Here is a gift guide inspired by the needs and wants of ForAllSecure’s very own security experts.

With functional testing, there’s a finite number of ways that a feature can be used. With non-functional testing there’s an infinite number of possibilities. Fuzz testing is an effective solution for addressing those non-functional testing challenges.

For two years Heartbleed was a zero-day in OpenSSL until fuzz testing exposed it. How many others are in the wild now? And how will we find the next one? In this episode I talk about how Heartbleed (CVE 2014-0160) was found and also interview Rauli Kaksonen.

Find out the fundamental reasons why fuzzing is so effective, and why it remains a useful part of a secure software development lifecycle.

You’ve probably heard of bug bounties. But did you know there’s an elite group of bug bounty hunters that travel the world? Meet Stok; he’s one of them. In this episode, Stok talks about his beginnings in enterprise security and his transition into the top tier of bug bounty hunters.

ForAllSecure, a pioneer in automated application security, announced today the continued innovation behind their flagship product Mayhem with the release of new reporting dashboards.

Learn why SCA and AFT are two ideal solutions for transforming your DevOps workflow to a DevSecOp workflow.

While digital voting systems today are more secure today, what about the larger ecosystem, starting from the moment you register until your vote is counted? Who’s keeping those systems secure? In this episode of The Hacker Mind, Dr. Jared DeMott of VDA Labs talks about his work securing voter registration.