What is Fuzzing? [Infographic]

Fuzzing is a powerful tool that finds bugs in programs. Hackers regularly use fuzzing to discover software vulnerabilities to build their attacks...

5 CVEs found with Feedback-based Fuzzing

In recent years, modern fuzzing (feedback-based fuzzing) has uncovered a large number of bugs and vulnerabilities, both in open source and..

Rule of Ten: How To Cut Your Development Costs

Software bugs are far more relevant to costs than hardware errors. In fact, software failures account for more downtime costs than hardware..

CI Fuzz 2.13: Improvements for Java Fuzzing and UI/UX (Release Note)

Our latest release comes with several new features for Java fuzzing and great improvements for the user experience. Among the improvements for..

CVE Hunting with Fuzzing: Testing Open-Source Components

Executive Summary Software developers extend their existing frameworks and often write new source code from scratch. They cannot risk shipping..

Functional vs. Security Testing

What’s the difference between both testing methods? During the last year, we went to many conferences and fairs and talked to a lot of people. In..

Code Intelligence found 12 CVEs in Suricata

Our vulnerability researcher Sirko Höer recently found vulnerabilities while fuzzing the open-source Intrusion Detection System and Intrusion..

Using Symbolic Execution To Improve Modern Fuzzing

How Symbolic Execution Complements Modern Fuzzing What is symbolic execution?  Symbolic execution is a software testing technique that substitutes 

How to Select the Best Solution for Source Code Testing

Automated Code Testing for Software Quality Assurance Quality assurance done through code testing is an important part of the software development..

Bringing Modern Fuzzing to Java (CI Fuzz 2.0)

Security of Java applications Java is one of the most used programming languages in the industry. It is employed for a wide spectrum of applications..