Menu

What can you expect?

In this webinar, our CTO Khaled Yakdan will show you how to efficiently detect security vulnerabilities and bugs, within the backend of your web application, using modern fuzzing approaches: e.g. Injections (SQL Injections), Cross-Site Scripting (XSS), Information Leakage, Uncaught Exceptions leading to errors (e.g. NullPointerExeptions), and Crashes (OutOfMemory).

Fuzzing or fuzz testing is an automated software testing technique that involves providing invalid, unexpected, or random data as inputs to a computer program. The program is then monitored for exceptions such as crashes, failing built-in code assertions, or potential memory leaks.

Fuzz testing is currently the most effective method to automatically identify vulnerability and stability issues in software, especially network services and web applications. Google and other technology leaders already identify most of their software bugs and vulnerabilities with modern fuzzing (~80%), saving them a lot of manual effort and costs.

In this webinar you will ...

  • get an overview of modern fuzzing techniques (“feedback-based fuzzing”).
  • learn how to use dynamic code analysis to detect common security vulnerabilities and bugs (OWASP Top 10), while reducing your manual effort.
  • learn how to integrate fuzzing within your agile development processes.
  • learn how to create efficient fuzz testing campaigns by yourself.

Get Recording
API Fuzzing for eCommerce platforms

Agenda

  • 16:00 - 16:05 - Intro
  • 16:05 - 16:15  - Overview: What is feedback-based fuzzing?
  • 16:15 - 16:45  - Live-Demo: How to find vulnerabilities in the backend of your web application with feedback-based fuzzing
  • 16:45 - 17:00 - Q&A Session

Get Recording
Khaled Yakdan

Dr. Khaled Yakdan (CTO)

Host and moderator

Khaled Yakdan is an expert when it comes to solving difficult and challenging technical or scientific problems. In his role as CTO, works together with the development team on building and delivering CI Fuzz to enable users to increase the security and stability of their software and seamlessly integrate fuzzing into their development process. Khaled previously worked on his doctoral thesis and at the Fraunhofer FKIE. As a malware analyst, he is an expert in the analysis of binary code and has been working in reverse engineering research for 7 years.

Security Startup Bonn - Code Intelligence

About Code Intelligence

Code Intelligence develops a state-of-the-art application security testing solution that saves developers’ time and effort while drastically improving the security, stability and reliability of the codebase. Due to the earlier finding of bugs and vulnerabilities in the development process, Code Intelligence accelerates the development life cycle of software projects. The main technology is based on feedback-based / instrumented fuzzing techniques as used by Google and Microsoft extensively. The software improves the discovery of bugs and vulnerability due to higher code coverage and continuously executing automated security tests after each code change.

Learn More