Differences between current version and predecessor to the previous major change of Fuzz.
Other diffs: Previous Revision, Previous Author, or view the Annotated Edit History
Newer page: | version 3 | Last edited on Wednesday, September 30, 2009 5:20:18 pm | by LawrenceDoliveiro | |
Older page: | version 2 | Last edited on Monday, September 21, 2009 11:20:51 pm | by LawrenceDoliveiro | Revert |
@@ -1,5 +1,5 @@
-_Fuzzing_ is the act of generating random input to be fed to programs to try to flush out bugs in them. Something that often works better than completely random
input is input that is almost
, but not quite
, what the program expects
.
+_Fuzzing_ is the act of generating random input to be fed to programs to try to flush out bugs in them. In theory, programs should reject all invalid
input with suitable error messages
, but sometimes there are holes in their validation checks, which means that certain inputs can produce odd
, unintended behaviours or crashes
.
Some fuzzing tools are:
* [zzuf|http://caca.zoy.org/wiki/zzuf], a sort of “man-in-the-middle” fuzzer