-
Chapter 1 – Fuzzing Introduction
- Definition of fuzzing and its importance in software security.
- Historical context and evolution of fuzz testing.
- Overview of different fuzzing techniques and their applications.
- Common use cases and real-world examples of successful fuzzing.
-
Chapter 2 – Static & Dynamic Fuzzing
- Explanation of static fuzzing techniques and how they differ from dynamic fuzzing.
- Tools and frameworks for static analysis.
- Overview of dynamic fuzzing methodologies and their effectiveness.
- Comparison of the strengths and weaknesses of static vs. dynamic approaches.
-
Chapter 3 – Symbolic & Concolic Execution
- Introduction to symbolic execution and its role in program analysis.
- Explanation of concolic execution and how it combines concrete and symbolic execution.
- Tools and techniques for implementing symbolic and concolic execution in fuzzing.
- Use cases and examples demonstrating their effectiveness in finding vulnerabilities.
-
Chapter 4 – Python Fuzzing
- Overview of fuzzing tools and libraries available for Python.
- Best practices for writing effective fuzz targets in Python applications.
- Case studies of fuzzing popular Python libraries and frameworks.
- Integrating fuzzing into Python development workflows.
-
Chapter 5 – Go Fuzzing
- Introduction to fuzzing in the Go programming language.
- Discussion of Go-specific fuzzing libraries and frameworks.
- Writing fuzz targets for Go applications.
- Analyzing the effectiveness of fuzzing tools in the Go ecosystem.
-
Chapter 6 – Rust Fuzzing
- Overview of fuzzing strategies in Rust and the advantages of its safety features.
- Tools for fuzzing Rust applications, such as
cargo-fuzz
. - Techniques for writing fuzz tests in Rust.
- Examples of successful fuzzing in Rust projects and libraries.
-
Chapter 7 – Java Fuzzing
- Detailed exploration of fuzzing techniques and tools for Java applications.
- Case studies of fuzzing Java libraries, including Gson and JSoup.
- Best practices for integrating fuzzing into Java development processes.
- Performance considerations and optimization strategies for Java fuzzing.
-
Chapter 8 – Web Fuzzing
- Introduction to web application fuzzing and its significance.
- Overview of tools and techniques for fuzzing web technologies (e.g., JavaScript engines, HTML parsers).
- Case studies of web fuzzing and vulnerabilities discovered through this approach.
- Best practices for incorporating fuzzing into web development workflows.
-
Notifications
You must be signed in to change notification settings - Fork 22
raminfp/the-art-of-fuzzing
Folders and files
Name | Name | Last commit message | Last commit date | |
---|---|---|---|---|
Repository files navigation
About
Application Fuzzing: Tools, Techniques, and Best Practices
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published