[fuzzing] Fuzzing tradeoffs - where previously described?
Joshua Morin
morin.josh at gmail.com
Thu Feb 1 08:36:19 CST 2007
I don't think there could be a standardized formula or setup for fuzzing,
there is wide range of variables that come into play, especially if we are
talking outside of just application fuzzing and look at protocol fuzzing. A
good fuzzer could take weeks to find all the vulnerabilities and a set time
frame just leaves room for error. it is possibly to have a random and smart
fuzzing in one. A a smart fuzzer could fix this issue of a specific time
frame to fuzz,a good fuzzer can keep going after it "fuzzes" the DUT by
going back and running the fuzz process again without having to shutdown the
fuzzer itself, it may require setting up the DUT again but hey life is not
perfect.
On 2/1/07, Florent THIERY <fthiery at gmail.com> wrote:
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.whitestar.linuxbox.org/pipermail/fuzzing/attachments/20070201/487d5c1b/attachment.htm
More information about the fuzzing
mailing list