-
From SANS660: “Fuzzing is not an attack; it is a fault-testing technique.” Types are: Instrumented Fuzzing: “Monitoring” a system to learn how normal inputs look like. No pre-knowledge of the system needed. Intelligent utation: A protocol grammar which defines paths through all the code. Inputs are mutated according to the grammar. Tools https://tools.kali.org/vulnerability-analysis/sfuzz See https://en.kali.tools/all/?category=fuzzer Sulley…