Find out how Fuzzing is revolutionizing the future of application security. The FuzzCon Europe 2020 is the event for developers, security professionals, and fuzzing enthusiasts, who want to learn more about the latest developments, innovative technologies and trends in application security testing. FuzzCon Europe aims to democratize fuzzing and thus make the value of this emerging trend in continuous software testing available for everyone.
You are interested in AppSec and are looking for ways to make your software solutions more secure?
Take part in the event and get exclusive insights into latest research and developments around fuzzing and application security. The event is hosted by Code Intelligence.
What to expect?
Inspiring Keynotes
from leading experts from the field of IT security
Interesting Fireside Chats
with participants from various industries about practical use cases of modern fuzzing
Hands-on sessions
with experienced AppSec consultants
Q&A rounds
to answer all your questions
Due to the current Covid-19 crisis we have decided to host the conference completely online and 100% free!
The Speakers
Andreas Zeller
Professor
CISPA Helmholtz Center for Information Security
Kostya Serebryany
Principal Software Engineer
Google
Bhargava Shastry
Security Engineer
Ethereum Foundation
Rakshith Amarnath
Project Lead R&D
Bosch
Marcel Böhme
Senior Lecturer
Monash University
Matthew Smith
Professor
University of Bonn, Fraunhofer FKIE
Caroline Lemieux
Security Researcher
UC Berkeley
Sergej Dechand
Chief Executive Officer
Code Intelligence
Cornelius Aschermann
Security Researcher
Oracle
Sergej Schumilo
Security Researcher
Ruhr-University Bochum
Tobias Esser
Head of Security Testing
imbus
Sirko Höer
Vulnerability Expert
German Federal Office for Information Security (BSI)
Khaled Yakdan
Chief Scientist
Code Intelligence
Götz Martinek
Managing Director
sodge IT
Sebastian Pöplau
Security Researcher
Systems Security Group Eurecom (France)
What is Fuzzing?
In recent years, feedback-based fuzzing (or coverage-guided fuzzing) has experienced an unmatched success story. For example, over 27,000 bugs have been found in Chrome and several open-source projects and Google stated that it finds around 80% of its bugs with modern fuzzing techniques. However, fuzzing is not only reserved for the big tech companies but is gradually finding its way into the wide world.
Fuzzing is used for security and stability testing of the codebase. The application under test is fed with a series of inputs, which are smartly mutated in the testing process. The testing tool gets feedback about the code covered during the execution of inputs. Unlike traditional or black-box fuzzing, feedback-based fuzzing explores the program state efficiently and discovers bugs hidden deep in the code. If you want to learn more in detail about the underlying technology we recommend you to read the blog post The Magic Behind Feedback-based Fuzzing.
Agenda 2020
10:00
-
10:30
Warm Welcome & Fuzzing 101
Sergej Dechand (CEO, Code Intelligence)
10:30
-
11:00
Usability Issues of Modern Fuzzers
Matthew Smith (Professor, University of Bonn / Fraunhofer FKIE)
11:00
-
11:30
Fuzzing: Challenges and Reflections
Marcel Böhme (Senior Lecturer, Monash University)
11:30
-
12:00
tba
Götz Martinek (Managing Director, sodge IT)
12:00
-
12:30
Fireside Chat: Fuzzing for Industry Use Cases
Tobias Esser (Head of Security Testing, imbus), Alexander Weise (Vice President, Code Intelligence)
12:30
-
13:30
Lunch Break
13:30
-
14:15
Taming Fuzzers
Andreas Zeller (Professor, CISPA Helmholtz Center for Information Security)
14:15
-
14:45
Fuzzing Suricata: Finding Vulnerabilities in Large Projects
Sirko Höer (Vulnerability Expert, German Federal Office for Information Security)
14:45
-
15:15
What’s different about fuzzing Automotive Software?
“FuzzCon Europe 2019 - What’s all the fuzz about?” was the first big event on fuzzing topics in Europe and it turned out to be a success. The event’s objective was to discuss current projects and latest developments in IT security with a focus on modern fuzzing. Leading experts in the field were invited on this day to give talks and lead discussions on fuzzing and similar technologies. There was also plenty of room for networking and one-on-one discussions.
Feedback from last year
“The event provided insights on how to easily integrate fuzzing into software development process, showcased new applications for fuzzing and state-of-the-art technologies.”
FuzzCon Europe 2019
“The talks were of high quality and demonstrated the depth of technical knowledge."
FuzzCon Europe 2019
“I found the presentations to be very interesting. They motivated me to learn more about the topic of fuzzing.”
.png?width=400&name=Tobias_400x400%20(1).png "Tobias Esser")
