Fuzzing is the best method for finding the unknown vulnerabilities. In fuzz testing, unexpected data is fed to the system through an open interface, and the behavior of the system is then monitored. If the system fails, there is a bug in the software. All the found issues are true implementation errors from quality perspective. In this talk, we will introduce Fuzzing and the basic process of model-based Fuzzers.
Security Engineer/Strategist for Codenomicon, Ltd. -Responsible for security analysis and research in products and service which reveal public, new and undisclosed vulnerabilities in the realm of Internet, VoIP, IPTV, & Mobile.