[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-dev] fuzzer for tor as a masters project



Hello,

I was browsing the tor site in order to find an idea for my masters project in security and I came across the following:

----------------------------------------------------------------------

In your project ideas page https://www.torproject.org/getinvolved/volunteer.html.en#torCleanup

You have the following :

Write a fuzzer
for Tor to discover security vulnerabilities. Determine if there are good fuzzing frameworks out there for what we want. Win fame by getting credit when we put out a new release because of you!

------------------------------------------------------------------------------------

I have no experience in fuzzers but I think it would be a very nice topic to learn and on the same time contribute.

I see that it is possible to create a private tor network for testing


https://www.torproject.org/docs/faq#PrivateTorNetwork



And maybe use the command line options to have as one point of input

https://www.torproject.org/docs/tor-manual.html.en


Bassically I send this email for 2 reasons:

1) To see if there are ways that you guys can help me with this on the future

and

2) To give me any starting tips mostly related to what type of data that would be good for testing, any other input places from where data can be fed and generally any kind of usefull info related to this.

Thanks a lot and have a nice day

Pietro.
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev