4f: The File Format Fuzzing Framework

Krakow Labs Development

4f: The File Format Fuzzing Framework

4f is a file format fuzzing framework. 4f uses modules which are
specifications of the targeted binary or text file format that tell it
how to fuzz the target application.

If 4f detects a crash, it will log crucial information important for
allowing the 4f user to reproduce the problem and also debugging
information important to deciding the severity of the bug and its
exploitability.

4f uses specialized modules for fuzzing code that interprets file
formats. Several modules are included and more can be written to follow
other file formats.

Full source code, binary, package, demonstration photo and video @
http://www.krakowlabs.com

You can also check out the video that shows 4f discovering 0day (not
worth much but it shows 4f works!) @ SecurityTube too -->
http://www.securitytube.net/The-File-Format-Fuzzing-Framework-(4f)-video.aspx

~KL