David DeSanto & Sam Kerr – Getting Fuzzy: Blurring the lines of traditional QA and security testing

October 10, 2020


Fuzz testing is a new tool in the development arsenal enabling developers to inject random, malformed data into their application and see what happens! Fuzz testing helps identify bugs and security issues (e.g., unknown vulnerabilities) that traditional testing processes commonly miss as they are focused on known vulnerabilities. In this session, we will define what fuzz testing is, what it is not, why is it important, and how to get up and running quickly. We will also share several real-world examples of how fuzz testing was used to find bugs that otherwise wouldn’t have been discovered. We will end this session with demos of two different fuzz testing techniques within the development workflow leveraging GitLab SCM, CI, and Vulnerability Management.

Share some ❤
starts in 10 seconds