Andrey Fedotov

@[email protected]
91 Followers
58 Following
150 Posts
Ph.D
eBPF, AppSec
Github:https://github.com/anfedotoff
Andrey FedotovFeb 26

We implemented the rule engine in our eBPF-based security monitoring agent Bombini: https://github.com/bombinisecurity/bombini
Rule evaluation is blazingly fast and works entirely in eBPF!
Check out the docs: https://bombinisecurity.github.io/bombini/configuration/rules.html

Feel free to give us any feedback! Contributions are welcome!

#ebpf #kubernetes #security #cloudnative

Andrey FedotovFeb 3, 2023
New casr 2.4.0 is available!
https://github.com/ispras/casr/releases/tag/v2.4.0
casr-cli now provides a joint statistics all over reports!
casr-afl now copies crashes next to reports, produces casr reports in parallel and prints casr-cli joint statistics!
#casr #AFLplusplus
Release v2.4.0 · ispras/casr

user specified regular expression to filter functions in stacktrace casr-cli: joint statistics about reports casr-afl: copying crashes next to reports, parallel reports producing, joint statistics ...

GitHub
Andrey FedotovJan 5, 2023
I noticed that #rust overflow-checks is a very cool thing for symbolic execution. Cause these checks are conditional jumps, they could be easily guided to an error condition.
#fuzzing
Andrey FedotovDec 24, 2022

Checkout new #casr 2.3.0 release!!!
https://github.com/ispras/casr
- rust panic support in casr-san/casr-gdb
- c++ exceptions support in casr-san/casr-gdb
- casr-python for creating CASR reports from python crashes🔥​

P. S. Merry Christmas! ❄️​❄️​❄️​
#fuzzing #afl #aflplusplus #python

GitHub - ispras/casr: Collect crash reports, triage, and estimate severity.

Collect crash reports, triage, and estimate severity. - GitHub - ispras/casr: Collect crash reports, triage, and estimate severity.

GitHub
Andrey FedotovNov 21, 2022

At last, new casr 2.2.0 release with casr-afl!!!
Triaging crashes found by @aflplusplus as simple as it could be:
$ cargo install casr
$ casr-afl -i afl-out -o casr-out
$ casr-cli casr-out/cl1/<report_name>

https://github.com/ispras/casr

#casr #fuzzing #afl #AFLplusplus

GitHub - ispras/casr: Collect crash reports, triage, and estimate severity.

Collect crash reports, triage, and estimate severity. - GitHub - ispras/casr: Collect crash reports, triage, and estimate severity.

GitHub
Andrey FedotovNov 15, 2022
I've just finished my work on casr-afl! Now it's possible to create casr crash reports from @aflplusplus output directory! Awaiting review, @VishnyaSweet ;). Here are some pics!
#casr #fuzzing #afl