syzkaller/docs/talks.md

# Tech talks and articles

_newer first_
* [syzkaller: adventures in continuous coverage-guided kernel fuzzing](https://www.youtube.com/watch?v=YwX4UyXnhz0)
at [BlueHatIL 2020](https://www.bluehatil.com)
[[presentation]](https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000)
[[slides]](https://msrnd-cdn-stor.azureedge.net/bluehat/bluehatil/2019/assets/doc/syzkaller%20Adventures%20in%20Continuous%20Coverage-guided%20Kernel%20Fuzzing.pdf)
* [Bugs on the Windshield: Fuzzing the Windows Kernel](https://www.youtube.com/watch?v=__7PAzgbprw)
at [BlueHatIL 2020](https://www.bluehatil.com)
[[slides]](https://msrnd-cdn-stor.azureedge.net/bluehat/bluehatil/2019/assets/doc/Bugs%20on%20the%20Windshield%20Fuzzing%20the%20Windows%20Kernel.pdf)
* [Fuzzing the OpenBSD Kernel](https://www.openbsd.org/papers/fuzz-slides.pdf)
* [syzkaller in FreeBSD](https://papers.freebsd.org/2019/octvendorsummit/johnston-syzkaller/)
* [Фаззинг ядра Linux на практике](http://0x1.tv/20191206AG) at ISPRASOPEN-2019 (in Russian)
* [syzbot: update and open problems](https://linuxplumbersconf.org/event/4/contributions/428/attachments/308/515/syzbot__Plumbers_2019.pdf)
at [Linux Plumbers 2019](https://linuxplumbersconf.org/event/4/contributions/428/)
* [GWP-ASAN](https://linuxplumbersconf.org/event/4/contributions/425/attachments/307/513/GWP-ASAN__Plumbers_2019.pdf)
at [Linux Plumbers 2019](https://linuxplumbersconf.org/event/4/contributions/425/)
* [syzkaller: update and open problems](https://static.sched.com/hosted_files/lssna19/16/syzkaller%20LSS%20NA%202019.pdf)
at [Linux Security Summit NA 2019](https://lssna19.sched.com/event/RHaW)
* [WSL Reloaded](https://www.slideshare.net/AnthonyLAOUHINETSUEI/wsl-reloaded)
* [Drill Apple Core: Up and Down](https://www.youtube.com/watch?v=zDXyH8HxTwg)
at Blackhat Europe 2018 [[slides]](https://i.blackhat.com/eu-18/Wed-Dec-5/eu-18-Juwei_Lin-Drill-The-Apple-Core.pdf)
* [Evolution of kernel fuzzers in NetBSD](https://troopers.de/downloads/troopers19/TROOPERS19_AR_Evolution_of_kernel.pdf)
* [syzbot: automated kernel testing](https://linuxplumbersconf.org/event/2/contributions/237/attachments/61/71/syzbot_automated_kernel_testing.pdf)
at [Linux Plumbers 2018](https://linuxplumbersconf.org/event/2/contributions/237/)
* [syzbot and the tale of thousand kernel bugs](https://www.youtube.com/watch?v=qrBVXxZDVQY)
at [Linux Security Summit NA 2018](https://lssna18.sched.com/event/FLYI/syzbot-and-the-tale-of-thousand-kernel-bugs-dmitry-vyukov-google) [[slides]](https://events19.linuxfoundation.org/wp-content/uploads/2017/11/Syzbot-and-the-Tale-of-Thousand-Kernel-Bugs-Dmitry-Vyukov-Google.pdf)
* [syzkaller+KASAN](https://docs.google.com/presentation/d/e/2PACX-1vSEBicdYC8lHHglZeRt8zw-UQHSs8WohvF94X6th9vgNYDXEACla9-0QLf5T4Xgp-ue9I7ceIS-4InI/pub?start=false&loop=false&delayms=3000)
at [SIL2LinuxMP Workshop 2018](http://www.osadl.org/SIL2LinuxMP-Workshop-7-April-17-to-19.sil2linuxmp-workshop7.0.html)
* [ubsan, kasan, syzkaller und co](https://www.youtube.com/watch?v=Acp0A9X1254&t=1699s)
* [syzkaller: the next gen kernel fuzzer](https://www.slideshare.net/DmitryVyukov/syzkaller-the-next-gen-kernel-fuzzer)
at Qualcomm Mobile Security Summit 2017
* [syzkaller: future development](https://www.linuxplumbersconf.net/2016/ocw//system/presentations/3561/original/Syzkaller.pdf)
at [Linux Plumbers 2016](https://blog.linuxplumbersconf.org/2016/ocw/proposals/3561.html)
* [Sanitizers: a new generation of bug finding tools](https://blog.linuxplumbersconf.org/2016/ocw/system/presentations/3471/original/Sanitizers.pdf)
at [Linux Plumbers 2016](https://blog.linuxplumbersconf.org/2016/ocw/proposals/3471.html)
* [Kernel Sanitizers: a new generation of bug finding tools for Linux kernel](https://docs.google.com/presentation/d/e/2PACX-1vQyApzKGeFnrfOETIscmnpvxRz9pVwzNTQE495LnP1MRXQjQmtZGr9LlN2ITplw73h-ma4ZVyq-33OV/pub?start=false&loop=false&delayms=3000)
at GeeKon 2015
* [AddressSanitizer/ThreadSanitizer for Linux Kernel](https://www.youtube.com/watch?v=capbD_aRz40)
at Linux Collaboration Summit 2013

## Articles

* From [Collabora](https://twitter.com/Collabora):
  * [syzkaller: fuzzing the kernel](https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/)
  * [Using syzkaller to detect programming bugs in the Linux kernel](https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/)
  * [Using syzkaller: fuzzing your changes](https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/)
* From [HardenedLinux](https://github.com/hardenedlinux) project:
  * [Kernel QA with syzkaller and qemu](https://github.com/hardenedlinux/Debian-GNU-Linux-Profiles/blob/master/docs/harbian_qa/fuzz_testing/syzkaller_general.md) (tutorial on how to setup syzkaller with qemu)
  * [Syzkaller crash DEMO](https://github.com/hardenedlinux/Debian-GNU-Linux-Profiles/blob/master/docs/harbian_qa/fuzz_testing/syzkaller_crash_demo.md) (tutorial on how to extend syzkaller with new syscalls)
  * [Kernel debug tool with syzkaller](https://github.com/hardenedlinux/Debian-GNU-Linux-Profiles/blob/master/docs/harbian_qa/fuzz_testing/syz_debug.md) (debugging qemu VM created by syz-manager with gdb)
  * [Explanation of some syzkaller internals](https://github.com/hardenedlinux/Debian-GNU-Linux-Profiles/blob/master/docs/harbian_qa/fuzz_testing/syz_analysis.md)
  * [A example of fuzzing the ceph filesystem](https://github.com/hardenedlinux/Debian-GNU-Linux-Profiles/tree/master/docs/harbian_qa/fuzz_testing/syz_for_ceph)
* [Exploiting the Linux kernel via packet sockets](https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html)
* [Coverage-guided kernel fuzzing with syzkaller](https://lwn.net/Articles/677764/) (by David Drysdale)
* [Debugging a kernel crash found by syzkaller](http://vegardno.blogspot.de/2016/08/sync-debug.html) (by Quentin Casasnovas)

Also see [research page](/docs/research.md).