TrueType Font Fuzzer

• Created to fuzz TTF files and generate test cases
• Byte-flipping method
• It’s structure aware (can fix table checksums etc.)
• It can generate Doc, Java, Silverlight, PDF test cases
• Discovered vulnerabilities on Microsoft Office and Java