Research

 

LZfuzz

  1. A smart fuzzer that uses the lempel-ziv compression algorithm to automatically tokenize protocols and then fuzzes and sends proxied traffic using a modified version of the General Purpose Fuzzer. LZfuzz was used to test the security of several SCADA and VoIP protocols.

    Sergey Bratus, Axel Hansen, Anna Shubina.
    LZfuzz: a fast compression-based fuzzer for poorly documented protocols.
    Computer Science Technical Report TR2008-634. Dartmouth College. September 2008.

    Sergey Bratus, Axel Hansen, Anna Shubina.
    Fuzzing Proprietary SCADA Protocols.
    Poster, Dartmouth Computer Science Research Symposium, 2008.


Backhoe

  1. A network traffic visualization to find anomalies using information theoretic metrics.

    Sergey Bratus, Axel Hansen, Fabio Pellacini and Anna Shubina
    Backhoe, a Packet Trace and Log Browser.
    Vizsec 2008 conference proceedings.


Failure-Oblivious Computing

  1. Improved heuristics for program recovery from buffer-overflow attacks and memory errors.


    Axel Hansen, under the direction of Michael Zhivich (Lincoln Laboratory, MIT)

    Improved Heuristics for Program Continuation in Failure-Oblivious Computing


Baffle

  1. An active fingerprinter for wireless access points over the link-layer.

    Sergey Bratus, Cory Cornelius, Daniel Peebles, and Axel Hansen
    Active Fingerprinting of 802.11 APs.
    Toorcon 2008.

    Sergey Bratus, Cory Cornelius, Daniel Peebles, and Axel Hansen
    Active Fingerprinting of 802.11 APs.
    Blackhat Briefings 2008.