Book: Open Source Fuzzing Tools
Author: Noam Rathaus, Gadi Evron
Pages: 210
Format: PDF
Language: English
ISBN10: 1597491950
Fuzzing is often described as a "black box" software testing technique. It works by automatically feeding a program multiple input iterations in an attempt to trigger an internal error indicative of a bug, and potentially crash it. Such program errors and crashes are indicative of the existence of a security vulnerability, which can later be researched and fixed.Fuzz testing is now making a transition from a hacker-grown tool to a commercial-grade product. There are many different types of applications that can be fuzzed, many different ways they can be fuzzed, and a variety of different problems that can be uncovered. There are also problems that arise during fuzzing; when is enough enough? These issues and many others are fully explored.
[list][*] Learn How Fuzzing Finds Vulnerabilities
Eliminate buffer overflows, format strings and other potential flaws
[*] Find Coverage of Available Fuzzing Tools
Complete coverage of open source and commercial tools and their uses
[*] Build Your Own Fuzzer
Automate the process of vulnerability research by building your own tools
[*] Understand How Fuzzing Works within the Development Process
Learn how fuzzing serves as a quality assurance tool for your own and third-party software
[/list]
No comments:
Post a Comment