7. Environment Variable and Argument Fuzzing
“This foreign policy stuff is a little frustrating.”
—George W. Bush, as quoted by the New York Daily News, April 23, 2002
Local fuzzing is arguably the simplest type of fuzzing. Although many attackers and researchers will have more impressive results exploiting remote and client-side vulnerabilities, local privilege escalation is still an important topic. Even when a remote attack is leveraged to gain access to a targeted machine, local attacks are often used as a secondary attack vector to obtain required privileges.
Introduction to Local Fuzzing
A user can introduce variables into a program in two main ways. Other than the obvious standard input device, which is usually the ...
Get Fuzzing: Brute Force Vulnerability Discovery now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
