Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

AST

Uncovering Hidden Bugs and Vulnerabilities in C/C++ | How to Fuzz Your Code With 3 Commands

Dec 7, 2022 By Code Intelligence In Code Intelligence
CI Fuzz CLI is an open-source solution that lets you run feedback-based fuzz tests from your command line. Every developer can use it to find bugs and vulnerabilities with three simple commands. In this stream, I will demonstrate: 1) How to cover the current state of fuzz testing 2) How to set up CLI fuzzing within 3 commands 3) How to uncover multiple bugs and severe memory corruption vulnerabilities
View Video
code intelligence

Code Intelligence Unveils Simple Open-Source Tool to Automatically Test Java Applications for Unexpected Behaviors

Nov 29, 2022 By Code Intelligence In Code Intelligence
The CI Fuzz CLI Tool Enables Developers to Find and Fix Functional Bugs and Security Vulnerabilities by Dynamically Generating Millions of Unusual Test Inputs.
Read Post

Fuzzing Java Applications With CI Fuzz | Maven

Nov 29, 2022 By Code Intelligence In Code Intelligence
In this tutorial, I will show you how to set up and run a fuzz test on a Java application, with the CI Fuzz CLI using the Maven integration. The CI Fuzz CLI is an easy-to-use fuzzing tool, that enables you to integrate and run fuzz tests directly from your command line. I chose this tool for this tutorial, on how to set up a fuzz test, as it is particularly user-friendly, and as it allows developers to set up and run a fuzz test with only three commands.
View Video
code intelligence

Build Secure Java Applications with Fuzz Testing

Nov 29, 2022 By Markus Zoppelt In Code Intelligence

Today, I want to show you a way how to increase the integrity and functionality of your Java applications, with fuzz testing. This awesome testing approach has done me great service for building more secure Java applications, and it's basically as simple as unit testing. In this article, I will share how you can apply fuzz testing to your own code. And the best part: all code examples and tools I will use are 100% open-source.

Read Post

Fuzzing Java Applications With CI Fuzz | Gradle

Nov 29, 2022 By Code Intelligence In Code Intelligence
In this tutorial, I will show you how to set up and run a fuzz test on a Java application, with the CI Fuzz CLI using the Gradle integration. The CI Fuzz CLI is an easy-to-use fuzzing tool, that enables you to integrate and run fuzz tests directly from your command line. I chose this tool for this tutorial, on how to set up a fuzz test, as it is particularly user-friendly, and as it allows developers to set up and run a fuzz test with only three commands.
View Video
code intelligence

Mock Testing Embedded Systems With Fuzz Data

Nov 24, 2022 By Josh Grant In Code Intelligence

Mock testing, also called mocking, is an integral part of the embedded software development process as it allows you to test your code without relying on actual hardware. This can be extremely helpful when trying to debug your code or test new features. During fuzzing testing, applications are tested using unexpected or invalid inputs. Modern fuzzers generate these inputs based on feedback about the SUT’s interaction with previous test inputs.

Read Post

How To Improve Automotive Security | FuzzCon Europe - Automotive Edition 2022

Nov 23, 2022 By Code Intelligence In Code Intelligence
Victor Marginean from Argus Cyber Security will speak about the importance of end-to-end security verification, including fuzzing on SW and real interfaces. He will present how this can be used as a pillar integrated as part of the CI/CD and how it can also be monitored from the Vehicle Security Operating Centers used by OEMs. Victor presented this talk at FuzzCon Europe - Automotive Edition 2022. Learn more about this and more talks at fuzzcon.eu.
View Video

Fuzzing beyond Cybersecurity | FuzzCon Europe - Automotive Edition 2022

Nov 23, 2022 By Code Intelligence In Code Intelligence
In their talk, René Palige and Rosemary Joshy from Continental will share some insights on how they utilized fuzzing to improve overall software quality and how this can be integrated into existing verification and validation processes. They will further describe some of their experiences while applying coverage-guided fuzzing in ongoing automotive projects, what challenges they faced and how they overcame them.
View Video

Historical Vulnerabilities in the Automotive Space | FuzzCon Europe - Automotive Edition 2022

Nov 23, 2022 By Code Intelligence In Code Intelligence
In this talk, Andreas Weichslgartner from CARIAD will show how contemporary software engineering can help to write more secure code and detect vulnerabilities already during development. He will revisit historical vulnerabilities in the automotive space and take a look at common classes of bugs present in embedded software. Using these examples, he will show how modern programming language evolution and tooling can tackle and prevent these issues.
View Video
code intelligence

The Benefits of Negative Testing in Software Testing

Nov 23, 2022 By Josh Grant In Code Intelligence

In software testing, negative testing refers to the practice of feeding a system with unexpected or invalid inputs. Given an input field that accepts numeric values from 0-100, positive tests would assess if the application does what it's supposed to do, given input values such as "1", "2" or "99".

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.