#FuzzConEurope2021

The European Online Conference About Fuzzing
TBA SEPTEMBER, 2021
100% Online
GET RECORDINGS

Speaker @ latest FuzzCon Europe - WebSecurity Edition

abhishek_arya

Abhishek Arya

Principal Software Engineer and Security Researcher 

Google (OSS-Fuzz)

FuzzConMarinaPo2

Marina Polishchuk

Research Software
Engineer

Microsoft Research (RESTler)

khaledyakdan

Khaled Yakdan

CTO and
Co-Founder

Code Intelligence (CI Fuzz)

GMnM8-9z_400x400

Simon Bennetts

Project Lead and
Distinguished Engineer

StackHawk (OWASP ZAP)

About FuzzCon Europe

Speaker FuzzCon Europe

More than 1100 developers and security experts attended the first digital FuzzCon Europe 2020 last September. After the success of the conference, we decided to continue this event on a regular basis. The last FuzzCon Europe - WebSecurity Edition was aimed at software engineers, web developers and IT security experts.

The conference highlighted the security challenges of backend systems and web interfaces. Although modern language frameworks such as Java and Go already help developers secure their code, many bugs remain undetected. To address this issue, development teams are turning to additional API testing tools and more advanced DevOps processes to protect their software from these vulnerabilities (e.g., OWASP Top 10). 

Watch the recording and be inspired by real case studies and best practices from the industry. Learn how experienced developers and tech leads use modern fuzz testing to detect security vulnerabilities and bugs.

Due to Covid-19, we host all conferences completely online and 100% free!

The event was hosted by Code Intelligence.

GET RECORDINGS

What was FuzzCon Europe about?

Icon made by icon king from www.freeicons.io
Inspiring Talks
from leading security experts in the software industry
Icon made by icon king from www.freeicons.io
Panel Discussion
about practical use cases of modern fuzzing
Icon made by icon king from www.freeicons.io
Slack Community
to network and exchange ideas with other experts
Icon made by icon king from www.freeicons.io
Q&A Session
to answer all your questions around fuzzing and application security

 

Agenda @ WebSecurity Edition

Central European Time (CET)

18:00
-
18:15
Warm Welcome & Introduction
18:15
-
18:45
Why Fuzzing Web Applications Is Hard
Simon Bennetts (Project Lead, OWASP ZAP)
18:45
-
19:15
Stateful REST API Fuzzing with RESTler
Marina Polishchuk (Research Software Engineer, Microsoft Research)
19:15
-
19:45
OSS-Fuzz: Fuzzing Everything
Abhishek Arya (Principal Software Engineer, Google) and Fabian Meumertzheim (Senior Software Engineer, Code Intelligence)
19:45
-
20:15
Coverage-Guided Fuzzing for Web Applications
Khaled Yakdan (CTO, Code Intelligence)
20:15
-
20:45
Panel Discussion: Fuzzing for Web Applications
All Speakers
20:45
-
21:00
Conference Closing

This Was FuzzCon Europe

FuzzCon-Header-Website-1-1

FuzzCon Europe 2020

September 8, 2020 | Event Recording

Get RECORDINGS
FuzzCon_edition-Header-Website-1

FuzzCon Europe -
Automotive Edition

December 2, 2020 | Event Recording

Get RECORDINGS
FuzzCon_WebSec-Header-Website (1)-1-1

FuzzCon Europe -
WebSecurity Edition

March 24, 2021 | Event Recording

Get RECORDINGS

Feedback of Participants

Great talks and lots of interesting tools/techniques to follow up on. Great job organizers and speakers :-)."

FuzzCon Europe 2020 - Automotive Edition

“Interesting to see how an entirely new industry is now growing purely around fuzzing. In conclusion: a very slick event - well done to all involved!”

FuzzCon Europe 2020

Participants
Recording FuzzCon
You could not attend?
We recorded all talks! Sign up and we will send you the recordings.
GET RECORDINGS

What Is Fuzzing?

In recent years, feedback-based fuzzing (or coverage-guided fuzzing) has experienced an unmatched success story. For example, over 27,000 bugs have been found in Chrome and several open-source projects and Google stated that it finds around 80% of its bugs with modern fuzzing techniques. However, fuzzing is not only reserved for big tech companies: It is gradually finding its way into the wide world.

Fuzzing is used for security and stability testing of the codebase. The application under test is fed with a series of inputs, which are smartly mutated in the testing process. The testing tool gets feedback about the code covered during the execution of inputs. Unlike traditional or black-box fuzzing, feedback-based fuzzing explores the program state efficiently and discovers bugs hidden deep in the code. If you want to learn more in detail about the underlying technology, we recommend you to read our blog post The Magic Behind Feedback-based Fuzzing. 

Ready for exciting topics on web security?
Ready for Exciting Insights on Fuzzing Topics?

Stay tuned for the next FuzzCon Europe. Until then, check out our webinars.

Learn more
© Code Intelligence GmbH 2021