Pascal Beyer of Fraunhofer FKIE explores how deterministic snapshot fuzzing in emulated environments reveals deep OS and RDP vulnerabilities, advancing targeted security analysis techniques.
As operating systems and critical surfaces harden against conventional attacks, specialized tooling like emulators and snapshot fuzzers becomes essential for exploring deep vulnerabilities. This session delves into the methodology of deterministic snapshot fuzzing - an advanced technique that leverages emulation for repeatable, scalable detection of subtle security flaws.
By examining real-world case studies, including novel discoveries in Microsoft's RDP client, you will gain insight into how purpose-built fuzzing environments can expose complex heap memory leaks and remote code execution bugs. The session highlights opportunities and challenges in building secure, targeted analysis frameworks that operate near the core of computing systems.
In this session, led by Pascal Beyer, security researcher at Fraunhofer FKIE, you will also learn:
- Fundamentals of deterministic snapshot fuzzing;
- Emulator-driven analysis of kernel vulnerabilities;
- Advantages and limits of snapshot fuzzing in modern security research.
Here is the course outline:
RDP and the Power of Deterministic Snapshot Fuzzing |
Completion
The following certificates are awarded when the course is completed:
 |
CPE Credit Certificate |
