The IT Law Wiki


32,074pages on
this wiki
Add New Page
Add New Page Talk0

Definition Edit

A fuzzer is a tool used by security professionals (and professional hackers to test a parameter of an application.[1]

Overview Edit

Typical fuzzers test an application for buffer overflows, format string vulnerabilities, and error handling. More advanced fuzzers incorporate functionality to test for directory traversal attacks, command execution vulnerabilities, SQL Injection and Cross Site Scripting vulnerabilities. Web Vulnerability scanners typically perform all of this functionality, and can be considered an advanced fuzzer.[2]

References Edit

  1. OWASP, "Top 10 2014-I3 Insecure Network Services" (full-text).
  2. id.

Also on Fandom

Random Wiki