Introducing
Prezi AI.
Your new presentation assistant.
Refine, enhance, and tailor your content, source relevant images, and edit visuals quicker than ever before.
Trending searches
Loading…
3
Transcript
What?
Fuzzing is simply taking what is known about 'good' input and generating 'bad' input to see if the system can handle it.
For example, sending the full text of Shakespeare as the username to see if it crashes your application.
Why?
If you don't do this, someone else will. Just ask Microsoft, Apple, Google, Oracle, etc. etc.
Who?
You'll need to know a bit of the technical details (actually, the more, the better) about what inputs are expected and what limitations exist.
Once you have an idea of the types of errors you are looking for, you'll typically automate this.
When?
This depends on how you approach projects. Typically, this is a task that is scheduled around the time of integration testing.
Where?
You will need an environment that can be reset quickly and easily. You may actually succeed in crashing your system!
How?
Start with these sites for tools and reading
https://www.owasp.org/
- http://google-gruyere.appspot.com/
- http://code.google.com/p/webgoat/
- ...and more than will fit here
An Approach to
Security Testing
Fuzzing
Choose a template
Presentations from around the world
Learn more about creating dynamic, engaging presentations with Prezi