Fuzzing proprietary protocols not that hard #sectorca
Oct 29, 2010, 03:03 (1 Talkback[s])
(Other stories by Sean Michael Kerner)
"I'm a fan of fuzzing, which is basically a way to throw garbage
input at an application to see if it will break.
"At the SecTOR security conference currently underway in
Toronto, Dr. Thomas Proll of Siemens explained how he goes about
fuzzing proprietary protocols.
"Proll explained that in his job as a penetration tester he has
to fuzz proprietary protocol frequently and he usually doesn't have
enough to reverse engineer protocols either. The types of tech that
he is testing is often infrastructure like electricity, oil &
gas and transportation system."