Open Source Fuzzing Tools (Paperback)

Noam Rathaus, Gadi Evron

  • 出版商: Syngress Media
  • 出版日期: 2007-12-01
  • 定價: $2,350
  • 售價: 4.2$990
  • 語言: 英文
  • 頁數: 210
  • 裝訂: Paperback
  • ISBN: 1597491950
  • ISBN-13: 9781597491952
  • 相關分類: 資訊安全軟體測試
  • 立即出貨(限量) (庫存=2)

買這商品的人也買了...

商品描述

Description

A "fuzzer" is a program that attempts to discover security vulnerabilities by sending random data to an application. If that application crashes, then it has deffects to correct. Security professionals and web developers can use fuzzing for software testing--checking their own programs for problems--before hackers do it!



Open Source Fuzzing Tools is the first book to market that covers the subject of black box testing using fuzzing techniques. Fuzzing has been around fow a while, but is making a transition from hacker home-grown tool to commercial-grade quality assurance product. Using fuzzing, developers can find and eliminate buffer overflows and other software vulnerabilities during the development process and before release.

* Fuzzing is a fast-growing field with increasing commercial interest (7 vendors unveiled fuzzing products last year).
* Vendors today are looking for solutions to the ever increasing threat of vulnerabilities. Fuzzing looks for these vulnerabilities automatically, before they are known, and eliminates them before release.
* Software developers face an incresing demand to produce secure applications---and they are looking for any information to help them do that.

商品描述(中文翻譯)

描述

「模糊測試器」是一種嘗試通過向應用程序發送隨機數據來發現安全漏洞的程序。如果該應用程序崩潰,那麼它就有缺陷需要修復。安全專業人員和網絡開發人員可以在黑客之前使用模糊測試來進行軟件測試,檢查自己的程序是否存在問題!

《開源模糊測試工具》是市場上第一本涵蓋使用模糊測試技術進行黑盒測試的書籍。模糊測試已經存在一段時間,但正在從黑客自製工具轉變為商業級的質量保證產品。使用模糊測試,開發人員可以在開發過程中並在發布之前找到並消除緩衝區溢出和其他軟件漏洞。

* 模糊測試是一個快速增長的領域,商業利益也越來越大(去年有7家供應商推出了模糊測試產品)。
* 供應商今天正在尋找解決日益增加的漏洞威脅的解決方案。模糊測試可以在這些漏洞被發現之前自動尋找並消除它們。
* 軟件開發人員面臨著越來越大的需求,要生產安全的應用程序,他們正在尋找任何可以幫助他們做到這一點的信息。