Menu
Illustration by Freepik Storyset https://storyset.com/work

Fuzzing Web Services is Hard!

Web Applications are growing increasingly complex. It is not enough to ensure the security of each individual service; you also need to secure their interaction, which often leads to complex behavior. This can be exhausting and requires a lot of manual work.

In this webinar, Simon Resch will demonstrate a novel approach that allows you to simplify and automate your web application testing using modern fuzzing techniques. 

In fact, fuzzing your web applications is possible with minimal alterations to your existing test environment regardless of if it is running locally, using docker-compose, or inside a Kubernetes cluster.

Get Recording

Which Advantages Does the New Fuzzing Approach Offer?

With this new approach, you will be able to apply coverage-guided fuzz testing to a whole microservice environment. This will enable you to secure your web application with all their inter-dependencies, which will eventually improve your code coverage and increase your development speed.

 

How do you benefit?

  • Less manual effort
  • Increased code coverage
  • Easy end-to-end testing
  • Plug & play fuzzing for Java (easy setup)
  • Advanced API/REST fuzzing
Get Recording

Agenda @ Fuzzing Microservices

European Central Time (CET)

  • 16:00 - 16:10  -  Warm Welcome & Introduction
  • 16:10 - 16:15   -  Short Recap on Coverage Guided Fuzz Testing
  • 16:15 - 16:40  -  Demo: Fuzzing Complex Web Services- Simon Resch (Senior Software Engineer, Code Intelligence)
  • 16:40 - 16:50  -  What's Next? - How To Apply This Approach to Your Own Software 
  • 16:50 - 17:00  -  Q&A Session

Speaker

Simon Resch is a Senior Software Engineer at Code Intelligence. He is a specialist for fuzzing Java applications and was one of the leading developers behind Jazzer, an open-source fuzzer for the Java Virtual Machine (JVM). Jazzer has since been integrated into Google's open-source fuzzing framework OSS-Fuzz, and now contributes to secure many popular open-source applications, like Apache/PDFBox or OWASP/json-sanitizer.

Simon Resch Code Intelligence
SOURCE_CI Fuzz Demo

You Could Not Attend? 

No problem! We've got you covered! We recorded the webinar.

Get Recording

Recent Events and Recordings

FuzzCon Europe 2020

FuzzCon Europe 2020 - Fuzz Your Software

September 8, 2020 | Event Recording
Get Recordings
FuzzCon - Automotive Edition

FuzzCon Europe -
Automotive Edition

December 2, 2020 | Event Recording
Get Recordings
FuzzCon - WebSecurity Edition

FuzzCon Europe -
WebSecurity Edition

March 24, 2021 | Next Online Event
Get Recordings
Fuzzing Java Microservices in Spring Boot-1

The Path to Secure
Java Microservices

Mai 24, 2020 | Event Recording
Get Recordings
Modern Fuzzing For Automotive Software

Modern Fuzzing for
Automotive Software

September 24, 2020 | Event Recording
Get Recordings
API Fuzzing for eCommerce Platforms

API Fuzzing for eCommerce Platforms

January 21, 2021 | Event Recording
Get Recordings
Logo_code Intelligence_klein_weiß-1

 

About Code Intelligence

Code Intelligence offers a CI/CD-agnostic platform for automated software security testing. The platform helps developers to make their software more secure and robust. It empowers them to achieve reproducible testing results and to fix bugs already in the early stages of the development process. CI Fuzz enables them to increase their code coverage and to protect themselves against unexpected edge cases.

Get Started