(This presentation was shown as a support while giving some demos at BlackHat Arsenal 2014 in Las...
(This presentation was shown as a support while giving some demos at BlackHat Arsenal 2014 in Las Vegas https://www.blackhat.com/us-14/arsenal.html#Hernandez)
Melkor is a hybrid fuzzer (mutation-based and generation-based). It mutates the existing data in an ELF sample given to create orcs (malformed ELFs), however, it doesn’t change values randomly (dumb fuzzing), instead, it fuzzes certain metadata with semi-valid values through the use of fuzzing rules (knowledge base). Written in C, Melkor is a very intuitive and easy-to-use fuzzer to find functional (and security) bugs in ELF parsers.