David Korczynski
@davkor.bsky.social
Software security with a heavy focus on fuzzing and program analysis. Researcher at Ada Logics
Automating OSS-Fuzz integrations using an agentic approach to build generation: blog.oss-fuzz.com/posts/oss-fu...
Fuzzing at scale requires a solution for build script generation, and an LLM-based agentic approach looks promising for this. It too works well with OFG's harness gen capabilities 🤟
Fuzzing at scale requires a solution for build script generation, and an LLM-based agentic approach looks promising for this. It too works well with OFG's harness gen capabilities 🤟
OSS-Fuzz integrations via agent-based build generation
OSS-Fuzz integrations via agent-based build generation.
blog.oss-fuzz.com
May 27, 2025 at 8:06 AM
Automating OSS-Fuzz integrations using an agentic approach to build generation: blog.oss-fuzz.com/posts/oss-fu...
Fuzzing at scale requires a solution for build script generation, and an LLM-based agentic approach looks promising for this. It too works well with OFG's harness gen capabilities 🤟
Fuzzing at scale requires a solution for build script generation, and an LLM-based agentic approach looks promising for this. It too works well with OFG's harness gen capabilities 🤟
Reposted by David Korczynski
We’re hiring Vulnerability Researchers at @infosectcbr.bsky.social that specialise in Linux, OS kernels, Android, and embedded/IoT. With a world class hardware lab, come join our friendly and collaborative team, focusing on research against leading technologies. DM for details.
April 30, 2025 at 8:05 AM
We’re hiring Vulnerability Researchers at @infosectcbr.bsky.social that specialise in Linux, OS kernels, Android, and embedded/IoT. With a world class hardware lab, come join our friendly and collaborative team, focusing on research against leading technologies. DM for details.
Reposted by David Korczynski
Awesome job by my PhD student @gabriel-sherman.bsky.social presenting his work on Oracle-guided C Fuzzing Harness Generation! @icseconf.bsky.social
TLDR; 41 new bugs (40 now patched)... with 0 false positives!
TLDR; 41 new bugs (40 now patched)... with 0 false positives!
April 30, 2025 at 4:15 PM
Awesome job by my PhD student @gabriel-sherman.bsky.social presenting his work on Oracle-guided C Fuzzing Harness Generation! @icseconf.bsky.social
TLDR; 41 new bugs (40 now patched)... with 0 false positives!
TLDR; 41 new bugs (40 now patched)... with 0 false positives!
Reposted by David Korczynski
Using #LibAFL to fuzz @golang.org binaries with a proper modern fuzzer 📈📈
Super cool stuff by @srlabs.bsky.social
www.srlabs.de/blog-post/go...
Super cool stuff by @srlabs.bsky.social
www.srlabs.de/blog-post/go...
GoLibAFL — Fuzzing Go binaries using LibAFL
Nils Ollrogge, Bruno Produit
www.srlabs.de
April 16, 2025 at 12:28 PM
Using #LibAFL to fuzz @golang.org binaries with a proper modern fuzzer 📈📈
Super cool stuff by @srlabs.bsky.social
www.srlabs.de/blog-post/go...
Super cool stuff by @srlabs.bsky.social
www.srlabs.de/blog-post/go...
Reposted by David Korczynski
Slava Ukraini 🇺🇦
February 28, 2025 at 6:20 PM
Slava Ukraini 🇺🇦
Reposted by David Korczynski
#FUZZING'25 CALL FOR PAPERS
──────
✨ New OC members:
* Ruijie Meng (@ruijiemeng.bsky.social; NUS)
* Rohan Padhye (@rohan.padhye.org; CMU).
✨ New paper type: Fuzzing Nuggets (short papers).
🔗 fuzzingworkshop.github.io
📅 20.March (Submission)
📅 17.April (Notification)
📅 28.June (Workshop)
──────
✨ New OC members:
* Ruijie Meng (@ruijiemeng.bsky.social; NUS)
* Rohan Padhye (@rohan.padhye.org; CMU).
✨ New paper type: Fuzzing Nuggets (short papers).
🔗 fuzzingworkshop.github.io
📅 20.March (Submission)
📅 17.April (Notification)
📅 28.June (Workshop)
February 17, 2025 at 6:40 PM
#FUZZING'25 CALL FOR PAPERS
──────
✨ New OC members:
* Ruijie Meng (@ruijiemeng.bsky.social; NUS)
* Rohan Padhye (@rohan.padhye.org; CMU).
✨ New paper type: Fuzzing Nuggets (short papers).
🔗 fuzzingworkshop.github.io
📅 20.March (Submission)
📅 17.April (Notification)
📅 28.June (Workshop)
──────
✨ New OC members:
* Ruijie Meng (@ruijiemeng.bsky.social; NUS)
* Rohan Padhye (@rohan.padhye.org; CMU).
✨ New paper type: Fuzzing Nuggets (short papers).
🔗 fuzzingworkshop.github.io
📅 20.March (Submission)
📅 17.April (Notification)
📅 28.June (Workshop)
Auto generating #fuzzing harnesses by way of program analysis and #LLMs! New blog post "Minimal LLM-based fuzz harness generator": adalogics.com/blog/minimal...
We show how you can generate a sophisticated fuzz harness synthesis tool with a few lines of code.
We show how you can generate a sophisticated fuzz harness synthesis tool with a few lines of code.
Minimal LLM-based fuzz harness generator
adalogics.com
February 18, 2025 at 12:46 PM
Auto generating #fuzzing harnesses by way of program analysis and #LLMs! New blog post "Minimal LLM-based fuzz harness generator": adalogics.com/blog/minimal...
We show how you can generate a sophisticated fuzz harness synthesis tool with a few lines of code.
We show how you can generate a sophisticated fuzz harness synthesis tool with a few lines of code.
Reposted by David Korczynski
TIL Fuzz Introspector has moved to tree-sitter and a Python library. Cool!
"Fuzz Introspector: enabling rapid fuzz introspection tool development" -- a new blog post on Fuzz Introspector and how it is moving into supporting analysis as a pure python library. #fuzzing #program-analysis See the blog post: adalogics.com/blog/fuzz-in...
Fuzz Introspector: enabling rapid fuzz introspection tool development
adalogics.com
February 15, 2025 at 1:42 AM
TIL Fuzz Introspector has moved to tree-sitter and a Python library. Cool!
"Fuzz Introspector: enabling rapid fuzz introspection tool development" -- a new blog post on Fuzz Introspector and how it is moving into supporting analysis as a pure python library. #fuzzing #program-analysis See the blog post: adalogics.com/blog/fuzz-in...
Fuzz Introspector: enabling rapid fuzz introspection tool development
adalogics.com
February 14, 2025 at 1:07 PM
"Fuzz Introspector: enabling rapid fuzz introspection tool development" -- a new blog post on Fuzz Introspector and how it is moving into supporting analysis as a pure python library. #fuzzing #program-analysis See the blog post: adalogics.com/blog/fuzz-in...
Reposted by David Korczynski
Yesterday, I gave a commencement speech for the graduates of #Passau University. "The virtue of simplicity" reflected on the role of simplicity in science, both personal and universal, and how it is important for the future career of graduates. Enjoy! andreas-zeller.info/2025/01/25/T...
The Virtue of Simplicity
On January 24, 2025, I was invited to give a commencement speech for the graduates of Passau University. My speech focused on the “virtue of simplicity”, reflecting on the role of simplicity in scienc...
andreas-zeller.info
January 25, 2025 at 7:38 AM
Yesterday, I gave a commencement speech for the graduates of #Passau University. "The virtue of simplicity" reflected on the role of simplicity in science, both personal and universal, and how it is important for the future career of graduates. Enjoy! andreas-zeller.info/2025/01/25/T...
Reposted by David Korczynski
Project Zero is hiring 👀
No need to tell y'all that the team is awesome
No need to tell y'all that the team is awesome
Senior Security Engineer, Security Research — Google Careers
www.google.com
January 8, 2025 at 10:23 AM
Project Zero is hiring 👀
No need to tell y'all that the team is awesome
No need to tell y'all that the team is awesome
Reposted by David Korczynski
“AFLNet Five Years Later: On Coverage-Guided Protocol Fuzzing”
A look back at the last five years since the release of AFLNet, “the first code- and state-coverage-guided protocol fuzzer.”
arxiv.org/abs/2412.20324
A look back at the last five years since the release of AFLNet, “the first code- and state-coverage-guided protocol fuzzer.”
arxiv.org/abs/2412.20324
arxiv.org
January 3, 2025 at 3:08 AM
“AFLNet Five Years Later: On Coverage-Guided Protocol Fuzzing”
A look back at the last five years since the release of AFLNet, “the first code- and state-coverage-guided protocol fuzzer.”
arxiv.org/abs/2412.20324
A look back at the last five years since the release of AFLNet, “the first code- and state-coverage-guided protocol fuzzer.”
arxiv.org/abs/2412.20324