[fuzzing] I have a dream

[disco jonny]

nothing productive to add. but hey ho - i might be able to start an
argument or something.

On 29/03/07, nnp <version5 at gmail.com> wrote:
> On an unrelated note, does anyone know if Gadi's and Jared's books are
> taking the 'here are the tools and here are how they work' approach or
> more 'here's the theory behind fuzzing and here's how to construct
> your own' approach?

This is just a guess
Gadi - These are the tools, This is why people use them - Here is some
stuff about why you should do this.
Jared - (im really hoping on this one) Technical details of metrics
that can be used, Advanced debugging, Automated Debugging and some
code coverage

 for the first one, Jared for a bit of both. :)

If either one of you two document the history or entomology of fuzzing
i will personally hunt you down and kill you.

> Also, will there be anything in them for people
> who are experienced at fuzzing and using fuzzing tools or is it more
> aimed at complete beginners?

Im guessing

Gadi - Beginners, Corporations, IT professionals, Training courses
(CISSP style), Software Developers
Jared - Beginners, Academics, Training Courses (SANS style), People
that fuzz for a living.

I guess only time will tell.  (although I personally think they can
increase their profits by aiming it at software testers...)

I am basing this off the talks and information/papers that they have done.

yes, im bored. very very bored. - 45mins till i can go home.

anyone fancy some more idle disco speculation? name a subject or a
question and i will speculate an answer! (well for the next 45mins) -
or a fight, im always up for a fight.