Menu
Example of an image parser fuzz test

Example: Fuzzing an image parser application

Learn more about Fuzzing

What is Fuzzing?

Modern fuzzing is used for security and stability testing of the codebase. The software under test is fed with a series of inputs, which are purposefully mutated in the testing process. The testing tool gets feedback about the code covered during the execution of inputs. Unlike traditional or black-box fuzzing, feedback-based fuzzing explores the program state efficiently and discovers bugs hidden deep in the code.

Practical Limitations of Fuzzing

Fuzzing is hard to integrate into existing development environments. The integration requires fuzzing and domain knowledge. Existing tools are usually from fuzzing experts for other fuzzing experts and therefore hard to use. These limitations have encouraged us to create a solution for developers and experts alike.

SOURCE_Fuzzing Limitations
Learn more about CI Fuzz

Bugs & Vulnerabilities found with Fuzzing

See List of CVEs

Advanced Technology Stack

CI Fuzz is based on advanced technology and comes with convincing features and usable design.

CI technology stack

Industries Where Fuzzing Is Used

Fuzzing in Standards

Fuzzing is recommended by various industry standards and norms - often even mandatory.

  • ISO/IEC/IEEE 29119
    Software and systems engineering - Software testing
  • ISO/IEC 12207
    Systems and software engineering – Software life cycle processes
  • ISO 27001
    Information technology – Security techniques – Information security management systems
  • ISO 22301
    Security and resilience — Business continuity management systems
  • IT-Grundschutz (Germany)
    Based on ISO 27001
  • and others

See How Feedback-Based-Fuzzing Works in Action!

Talk to our developers to find out in how our software testing solution can help you provide secure and reliable software.

Get Started