Skip to content

SignalSEC/kirlangic-ttf-fuzzer

Repository files navigation

kirlangic-ttf-fuzzer

TrueType Font Fuzzer

  • Created to fuzz TTF files and generate test cases
  • Byte-flipping method
  • It’s structure aware (can fix table checksums etc.)
  • It can generate Doc, Java, Silverlight, PDF test cases
  • Discovered vulnerabilities on Microsoft Office and Java