Fuzzing is a technique for generating malformed inputs to an API or application in order to trigger unexpected behaviour.

By using fuzzing, you can identify vulnerabilities that would otherwise be missed by traditional testing techniques.

The paper provides a detailed overview of the process of fuzzing and how it can be used as part of your overall security strategy:

Fuzzers are automated tools that generate random data (fuzz) and feed this into an application or API under test. The tool then monitors the responses from the target system for any anomalous activity — such as crashes, hangs, memory leaks etc — which may indicate a vulnerability has been triggered

Back to Main