#FuzzConEurope2021

The European Online Conference About Fuzzing
TBA 2021
100% Online

Get free early access to CI Fuzz SaaS Platform!

GET EARLY ACCESS

About FuzzCon Europe

Speaker

Find out how Fuzzing is revolutionizing the future of application security. The FuzzCon Europe is the annually event for developers, security professionals, and fuzzing enthusiasts, who want to learn more about the latest developments, innovative technologies and trends in application security testing. FuzzCon Europe aims to democratize fuzzing and thus make the value of this emerging trend in continuous software testing available for everyone.

You are interested in AppSec and are looking for ways to make your software solutions more secure?

Take part in the event and get exclusive insights into latest research and developments around fuzzing and application security. The event is hosted by Code Intelligence.

What was FuzzCon Europe 2020 about?

FuzzCon Europe 2020 - #FuzzYourSoftware was the first big online event on fuzzing topics in Europe and it turned out to be a great success. Due to the Covid-19 crisis FuzzCon Europe 2020 took place completely online!

Icon made by icon king from www.freeicons.io
Inspiring Keynotes
from 16 leading experts from the field of IT security
Icon made by icon king from www.freeicons.io
1100+ participants
from various countries and industries
Icon made by icon king from www.freeicons.io
100 % free
expert knowledge about fuzzing
Icon made by icon king from www.freeicons.io
Hands-on sessions
with experienced AppSec consultants
RECAP FUZZCON EUROPE 2020

Speakers 2020

andreas-zeller

Andreas Zeller

Professor

CISPA Helmholtz Center for Information Security

kostya

Kostya Serebryany

Principal Software Engineer

Google

bhargava shastry

Bhargava Shastry

Security Engineer

Ethereum Foundation

Rakshith

Rakshith Amarnath

Project Lead R&D

Bosch

Marcel Böhme

Marcel Böhme

Senior Lecturer

Monash University

Prof- Dr- Matthew Smith

Matthew Smith

Professor

University of Bonn, Fraunhofer FKIE

caroline-lemieux-1200px

Caroline Lemieux

Security Researcher

UC Berkeley

Sergej

Sergej Dechand

Chief Executive Officer

Code Intelligence

cornelius aschermann

Cornelius Aschermann

Security Researcher

Facebook

Sergej-Schumilo

Sergej Schumilo

Security Researcher

Ruhr-University Bochum

Tobias Esser

Tobias Esser

Head of Security Testing

imbus

sirko höer

Sirko Höer

Vulnerability Expert

German Federal Office for Information Security (BSI)

khaled_bild

Khaled Yakdan

Chief Scientist

Code Intelligence

götz martinek

Götz Martinek

Managing Director

sodge IT

sebastian poeplau

Sebastian Pöplau

Security Researcher

Systems Security Group Eurecom (France)

christian holler

Christian Holler

Staff Security Engineer

Mozilla

RECAP FUZZCON EUROPE 2020

What is Fuzzing?

In recent years, feedback-based fuzzing (or coverage-guided fuzzing) has experienced an unmatched success story. For example, over 27,000 bugs have been found in Chrome and several open-source projects and Google stated that it finds around 80% of its bugs with modern fuzzing techniques. However, fuzzing is not only reserved for the big tech companies but is gradually finding its way into the wide world.

Fuzzing is used for security and stability testing of the codebase. The application under test is fed with a series of inputs, which are smartly mutated in the testing process. The testing tool gets feedback about the code covered during the execution of inputs. Unlike traditional or black-box fuzzing, feedback-based fuzzing explores the program state efficiently and discovers bugs hidden deep in the code. If you want to learn more in detail about the underlying technology we recommend you to read the blog post The Magic Behind Feedback-based Fuzzing. Or register to Fuzzing Academy!

icon_Smart Bug Detection-1

Fuzzing Academy

As an extension of FuzzCon Europe we have created Fuzzing Academy. Fuzzing Academy has the vision to establish fuzzing as a software testing standard. To achieve this goal, we want to share our knowledge free of charge to reach as many people as possible. Join our efforts and become an expert for the test methods of tomorrow!

  • Forever free for learners at all levels
  • Growing program with exciting learning opportunities
  • Learn at your own pace completely online
JOIN FUZZING ACADEMY

Agenda 2020

10:00
-
10:30
Warm Welcome & Fuzzing 101
Sergej Dechand (CEO, Code Intelligence)
10:30
-
11:00
Usability Issues of Modern Fuzzers
Matthew Smith (Professor, University of Bonn / Fraunhofer FKIE)
11:00
-
11:30
Fuzzing: Challenges and Reflections
Marcel Böhme (Senior Lecturer, Monash University)
11:30
-
12:00
The Human Component in Automated Bug Finding
Christian Holler (Staff Security Engineer, Mozilla)
12:00
-
12:30
Fireside Chat: Fuzzing for Industry Use Cases
Götz Martinek (Managing Director, sodge IT), Tobias Esser (Head of Security Testing, imbus), Alexander Weise (Vice President, Code Intelligence)
12:30
-
13:30
Lunch Break
13:30
-
14:15
Taming Fuzzers
Andreas Zeller (Professor, CISPA Helmholtz Center for Information Security)
14:15
-
14:45
Fuzzing Suricata: Finding Vulnerabilities in Large Projects
Sirko Höer (Vulnerability Expert, German Federal Office for Information Security)
14:45
-
15:15
What’s different about fuzzing Automotive Software?
Rakshith Amarnath (Project Lead R&D, Bosch)
15:15
-
15:45
Structure-aware Grey-box Fuzzing
Cornelius Aschermann (Security Researcher, Facebook), Sergej Schumilo (Security Researcher, Ruhr-University Bochum)
15:45
-
16:15
Symbolic Execution - what's that, and how to make it efficient?
Sebastian Pöplau
16:15
-
16:30
Short Break
16:30
-
17:00
Fuzzing the Solidity compiler
Bhargava Shastry (Security Engineer, Ethereum Foundation)
17:00
-
17:30
CI Fuzz - Continuous Fuzzing of Network Services
Khaled Yakdan (Chief Scientist, Code Intelligence)
17:30
-
18:00
Top N challenges of "deep" fuzzing
Kostya Serebryany (Principal Software Engineer, Google)
18:00
-
18:30
Expanding the Reach of Fuzz Testing
Caroline Lemieux (Security Researcher, UC Berkeley)
18:30
-
19:00
Ask the Experts - Open Q&A
Sergej Dechand (CEO, Code Intelligence), Christian Holler (Staff Security Engineer, Mozilla), Henning Perl (CTO, Code Intelligence)

This Was FuzzCon Europe 2020

Feedback

Great talks and lots of interesting tools/techniques to follow up on. Great job organizers and speakers :-)."

FuzzCon Europe 2020

Great conference great information, thanks for bringing us the best!"

FuzzCon Europe 2020

“I found the presentations to be very interesting. They motivated me to learn more about the topic of fuzzing.

FuzzCon Europe 2020

FuzzCon_Logo_rund_schwarz