Mayhem Blog

How to Test Embedded Systems Security Easily with Mayhem

How to Test Embedded Systems Security Easily with Mayhem

In this blog post, we will demonstrate how Mayhem can be used to easily set up fuzzing campaigns in embedded systems, using IoTGoat’s dnsmasq as an example.
CVE-2024-28578: Test Third-Party Image Libraries With Mayhem

CVE-2024-28578: Test Third-Party Image Libraries With Mayhem

Learn how to test third-party image libraries with Mayhem, using CVE-2024-28578 - an exploitable vulnerability in the FreeImage library - as an example.
Building a Time Machine: Testing Debian Packages Across Time

Building a Time Machine: Testing Debian Packages Across Time

In this blog post, we’re going to attempt to use Debian and its packages to build a mini time machine and investigate the vulnerability of packages across time.
Crafting POCs for Fun and Profit using Mayhem

Crafting POCs for Fun and Profit using Mayhem

In this five minute tutorial, we'll use Mayhem to generate a Proof-of-Concept (POC) exploit for a buffer overflow using a tiny C program as our running example.
Fuzzing Maven-Built C++ Code With Mayhem

Fuzzing Maven-Built C++ Code With Mayhem

I was recently asked to help a customer with a code base that uses Maven. In this blog post, I’ll show you my process for addressing it and how you can too.
Eliminate Hours of AppSec Triage with Mayhem’s Dynamic SBOM Generation and SCA Validation

Eliminate Hours of AppSec Triage with Mayhem’s Dynamic SBOM Generation and SCA Validation

Today we’re excited to announce the newest set of features in Mayhem: dynamic SBOM generation and SCA validation.
Integrating Mayhem With Simulink: How to Test Simulink Model Using Mayhem

Integrating Mayhem With Simulink: How to Test Simulink Model Using Mayhem

In this blog post, we'll explore how Mayhem can be seamlessly integrated with MATLAB's Simulink to create more secure applications.
New in 2.6: Intelligent CVSS Scoring for Unknown Vulnerabilities

New in 2.6: Intelligent CVSS Scoring for Unknown Vulnerabilities

In this blog post, I’ll go over what CVSS is and how Mayhem leverages it to prioritize your results.
Mayhem 2.6 is Now Available

Mayhem 2.6 is Now Available

Learn about some of the key new features of Mayhem 2.6, including faster coverage, intelligent CVSS, improved on-prem support, and more.

Fancy some inbox Mayhem?

Subscribe to our monthly newsletter for expert insights and news on DevSecOps topics, plus Mayhem tips and tutorials.

By subscribing, you're agreeing to our website terms and privacy policy.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Add Mayhem to Your DevSecOps for Free.