Appears in lists (1)
More like this (3)
Continuous Fuzzing with Go at Dgraph — Fuzzing is a technique of testing systems by providing...Continuous Fuzzing with Go at Dgraph — Fuzzing is a technique of testing systems by providing lots of varied, mutated, or even just random data and seeing what happens. The query language for Dgraph, a graph database built in Go, is tested in such a fashion and here’s how it works.
Abstract: “We present JQF, a platform for performing coverage-guided fuzz testing in Java. JQF is designed...Abstract: “We present JQF, a platform for performing coverage-guided fuzz testing in Java. JQF is designed both for practitioners, who wish to find bugs in Java programs, as well as for researchers, who wish to implement new fuzzing algorithms. Practitioners write QuickCheck-style test methods that take inputs as formal parameters. JQF instruments the test program’s bytecode and continuously executes tests using inputs that are generated in a coverage-guided fuzzing loop. JQF’s input-generation mechanism is extensible. Researchers can implement custom fuzzing algorithms by extending JQF’s Guidance interface. A Guidance instance responds to code coverage events generated during the execution of a test case, such as function calls and conditional jumps, and provides the next input. We describe several guidances that currently ship with JQF, such as: semantic fuzzing with Zest, binary fuzzing with AFL, and complexity fuzzing with PerfFuzz. JQF is a mature tool that is open-source and publicly available. At the time of writing, JQF has been successful in discovering 42 previously unknown bugs in widely used open-source software such as OpenJDK, Apache Commons, and the Google Closure Compiler.” Comments
Fuzz Testing in Go — Fuzz testing (or fuzzing) is a testing technique where a program...Fuzz Testing in Go — Fuzz testing (or fuzzing) is a testing technique where a program or function is provided with large amounts of random input in order to test its resilience. This post demonstrates the basic use of a fuzzing tool on Go code.