Fuzzing is often described as a "black box" software testing technique. It works by automatically feeding a program multiple input iterations in an attempt to trigger an internal error indicative of a bug, and potentially crash it. Such program errors and crashes are indicative of the existence of a security vulnerability, which can later be researched and fixed.
Fuzz testing is now making a transition from a hacker-grown tool to a commercial-grade product. There are many different types of applications that can be fuzzed, many different ways they can be fuzzed, and a variety of different problems that can be uncovered. There are also problems that arise during fuzzing; when is enough enough? These issues and many others are fully explored.
- ISBN10 1281145157
- ISBN13 9781281145154
- Publish Date 1 January 2011 (first published 14 December 2007)
- Publish Status Active
- Out of Print 17 June 2015
- Publish Country US
- Imprint Syngress Publishing
- Format eBook
- Pages 199
- Language English