1. X
  2. Andrea Fioraldi
Log inSign up
Andrea Fioraldi
1,862 posts
Image
user avatar
Andrea Fioraldi
@andreafioraldi
Cyber Response Italian Supercazzola Technology Officer at @mhackeroni Inc. Writing your favourite fuzz testing tools with @aflplusplus. Security researcher at 
Paris, France
s3.eurecom.fr/~fioraldi/
Joined June 2017
586
Following
3,119
Followers
RepliesRepliesMediaMedia

New to X?

Sign up now to get your own personalized timeline!

Create account

By signing up, you agree to the Terms of Service and Privacy Policy, including Cookie Use.

Terms·Privacy·Cookies·Accessibility·Ads Info·© 2026 X Corp.
Don't miss what's happening
People on X are the first to know.
Log inSign up
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    Apr 30, 2021
    #libafl is now public! github.com/AFLplusplus/Li… We decided to make it public even without so much documentation so people can start hacking on it. With @domenuk @srubenst1341 @hackerschoice
    Image
    GitHub - AFLplusplus/LibAFL: Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales...
    From github.com
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    Feb 21, 2020
    We started a series of beginner tutorials about AFL++ cause the doc seems too technical for fuzzing outsiders. The first is about persistent fuzzing (llvm and qemu) of libxml2. aflplus.plus/docs/tutorials…
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    Mar 29, 2019
    My introduction to fuzzing is now online! github.com/DefconRome/mee… 70 slides for a 40 min talk w/ an exhaustive overview, my tongue is crying but it was a pleasure to see people interested in learning this @ @defcon11396. I also figured out that maybe I can be a good rapper :)
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    Nov 16, 2019
    I've just written a performant in-memory fuzzing module with @fridadotre for AFL++ github.com/andreafioraldi…. Watch AFL++ on GH and stay tuned for a frida_mode in the next days!
    Image
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    Mar 11, 2024
    My Ph.D. thesis is now online theses.fr/2023SORUS546.p…
    This post is unavailable.
    74K
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    Dec 26, 2019
    New blogpost: Sanitized Emulation with QEMU-AddressSanitizer andreafioraldi.github.io/articles/2019/… I just open-sourced my QEMU patches to fuzz binaries with ASan, QASan. You can also use it with ARM targets on Linux, a thing that you can't do with LLVM ASan!
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    May 31, 2021
    New paper! I'm glad to announce that my first paper as PhD student, "The Use of Likely Invariants as Feedback for Fuzzers", will appear at USENIX Security 21 this August. GG to my coauthors @dcdelia and @balzarot . Preprint: s3.eurecom.fr/docs/usenixsec…
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    Dec 12, 2019
    Good news! @fridadotre Stalker is now ready for fuzzing and my frida-fuzzer is ready to fuzz APIs of Android apps. github.com/andreafioraldi… With a logic inspired by AFL, it has a libFuzzer-like harness interface. The project is in his early stage, look at the TODOs to contribute.
    Image
    GitHub - andreafioraldi/frida-fuzzer: This experimetal fuzzer is meant to be used for API in-memory...
    From github.com
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    Aug 9, 2022
    LibAFL has now a dedicated paper! We discuss its design and show some experiments comparing compelling approaches. It will appear at CCS '22 this fall. Amazing collab with @domenuk @Dongjiaz @balzarot Preprint at s3.eurecom.fr/docs/ccs22_fio…
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    Jan 16, 2023
    Replying to @CrazyItalianPol
    the eggplant must be the size of your hand, like this
    Image
    4K
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    Dec 14, 2019
    I repropose my notes about x86, Linux and virtualization in a single text file (~2500 lines only) for my fellow students in Sapienza. gist.githubusercontent.com/andreafioraldi…
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    Nov 23, 2022
    LibAFL QEMU full-system mode is a thing! Check out the example that fuzz a small ARM FreeRTOS firmware at github.com/AFLplusplus/Li… Next step: fast memory and devices snapshots
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    Oct 11, 2020
    The presentation of the paper "Fuzzing Binaries for Memory Safety Errors with QASan" that I did at SecDev20 is now on YT. Video: youtube.com/watch?v=UtFXU7… Paper: andreafioraldi.github.io/assets/qasan-s… Slides: andreafioraldi.github.io/assets/qasan-s… Code: github.com/andreafioraldi…
  • user avatar
    Andrea Fioraldi
    @andreafioraldi
    Jun 24, 2020
    Our paper about combination of fuzzing techniques with AFL++ is accepted at USENIX Woot! Preprint soon cc @domenuk @hackerschoice
Advertisement
Advertisement