What do you think?
Rate this book
Fuzzing: Brute Force Vulnerability Discovery
This is the eBook version of the printed book. If the print book includes a CD-ROM, this content is not included within the eBook version. FUZZING Master One of Today’s Most Powerful Techniques for Revealing Security Flaws! Fuzzing has evolved into one of today’s most effective approaches to test software security. To “fuzz,” you attach a program’s inputs to a source of random data, and then systematically identify the failures that arise. Hackers have relied on fuzzing for Now, it’s your turn. In this book, renowned fuzzing experts show you how to use fuzzing to reveal weaknesses in your software before someone else does. Fuzzing is the first and only book to cover fuzzing from start to finish, bringing disciplined best practices to a technique that has traditionally been implemented informally. The authors begin by reviewing how fuzzing works and outlining its crucial advantages over other security testing methods. Next, they introduce state-of-the-art fuzzing techniques for finding vulnerabilities in network protocols, file formats, and web applications; demonstrate the use of automated fuzzing tools; and present several insightful case histories showing fuzzing at work. Coverage • Why fuzzing simplifies test design and catches flaws other methods miss • The fuzzing from identifying inputs to assessing “exploitability” • Understanding the requirements for effective fuzzing • Comparing mutation-based and generation-based fuzzers • Using and automating environment variable and argument fuzzing • Mastering in-memory fuzzing techniques • Constructing custom fuzzing frameworks and tools • Implementing intelligent fault detection Attackers are already using fuzzing. You should, too. Whether you’re a developer, security engineer, tester, or QA specialist, this book teaches you how to build secure software.
799 pages, Kindle Edition
First published June 29, 2007
11 people are currently reading
90 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 - 3 of 3 reviews
June 17, 2013
generally a very useful guide to Fuzzing with concepts laid out well in a clear fashion and real examples. I am docking two points for the style of the book. One - it looks like the authors were looking for word count, because there are places were an editor's pen should've stepped in. Second, si the quotes from Bush. OK, I get it. You don't like the guy. But using them was quite unrpofessional
April 18, 2012
A great beginner/intermediate description of fuzzing in all of its vagaries. The one part of the book that kind of tripped me up though was the in-depth discussion of design decisions that seemed to accompany each of the different fuzzing tools that the authors were involved in writing.
September 11, 2017
A good overview, it could potentially have been condensed.
Displaying 1 - 3 of 3 reviews