Menu

In 5 steps, I will show you how to find a remote code execution vulnerability in an unreleased version of the  German Covid-19 tracing app (CWA), using feedback-based fuzz testing.

What Is Jazzer About? Jazzer, our fuzzer for the JVM, is already being used with several JVM...

Application Programming Interface (APIs), allow services to communicate with each other....

On December 9th, 2021, the Remote Code Execution (RCE) CVE-2021-44228 in Apache log4j 2 was...

CI Fuzz is a platform for automated security testing that aims to enable developers to ship...

Get an overview of our testing platform by watching our demo video. 

 

Watch CI Fuzz Demo

 

For obvious reasons, civilian aerospace is steeped in safety regulation. Long-standing...

Securing REST APIs is particularly difficult since they are highly interconnected and not...

As the founder of Catena Cyber and a member of the Suricata development team, Philippe Antoine...

Securing APIs is many things, but not easy. With the increasing reliance on microservices and...

In my talk at FuzzCon Europe 2021, I unveiled the latest features of the open-source Java fuzzer 

Many developers are already familiar with fuzz testing. But if you are kind of new to this...

Our Java Fuzzer Jazzer has found more than 19 Bugs (CVE-2021-37714) in the open-source library...

Modern fuzz testing is one of the most effective methods to find bugs and vulnerabilities in...

Let me tell you a story about the worries and sorrows of a modern day tech lead.

Many of the most dangerous vulnerabilities for web applications, listed by OWASP, are injection...

Subscribe to our Newsletter!