802.11 Fuzzing and Testing
Abstract
The project goal is to develop a 802.11 fuzzer to test the 802.11 code present on FreeBSD. Since the 802.11 standard is located in the Physical and Data Link Layer, most of the 802.11 implementation code can be found in the wireless device drivers. Testing the reliability of such drivers is crucial, because they are developed in C/C++ and such languages allows the occurring of a lot of vulnerabilities regarding memory management.
Deliverables
- An extended version of George Neville-Neil's Packet Construction Set supporting 802.11 frame manipulation
- A 802.11 state 1, 2 and 3 fuzzer (frame generator)
- Frame playback support
- A crash monitor tool
- Fuzzer documentation and tutorial