Click here to start
Table of contents
Fuzz Testing
It was a dark and stormy night…
Why Does Word Crash?
What is Fuzz Testing?
Why Fuzz?
Phases
Procedure
Differs from Targeted Testing
Limits
A Brief History of Fuzzing
Tools
You can fuzz any input
Taxonomy of Fuzz
World’s Simplest Fuzzer
The Parts of a Fuzzer
Fuzz Generation
Fuzz Heuristics
String Heuristics
Data Feeder
Error Detection
File Fuzzing
Common Problems in File Parsers
Network Fuzzing
Web App Fuzzing
Web App Heuristics: URLs
Web App Heuristics: HTTP
Web App Detection
Web App Implementation Details
API Fuzzing
Bugs Found Through Fuzzing
SPIKE
Slide 32
Slide 33
Spike API
Block sizes
Checksums
Spike script
Defensive Coding
Check
Never accept external data without verifying it.
Defenses against Fuzzing
Slide 42
Grammars
XML Vulnerabilities
Schemas
Verified Code
Bottom Line: Verify Everything
Be Conservative or Liberal
A final message
To Learn More
Author:
Elliotte Rusty Harold
Homepage:
http://www.cafeaulait.org/