Jump to content

Initial Find Of Program Vulnerabilities


bmanice
 Share

Recommended Posts

Hey guys im just curious about something.

How do people find vulnerabilities in programs? Just the entire theory boggles my mind. Can anyone provide a process summary for me? Possibly point me in the right direction to some info?

thanks!

Link to comment
Share on other sites

OK, in laymans terms fuzz testing is a technical way of testing your application by sending in an army of small children who will then push random buttons and click anything that moves, and then looking for unexpected results. For vulnerability testing this will allow you to see if sending a particular chunk of data to a particular input has a result of allowing you to do something you shouldn't. This is like yelling random words and numbers at a person and finding that "yellow 4 fish dog trouser press 9" makes them drop there wallet.

Reverse engineering is a process where you take a finished application, and work out what it does, how it does it and then aim towards replicating all of this in your own application.

Link to comment
Share on other sites

OK, in laymans terms fuzz testing is a technical way of testing your application by sending in an army of small children who will then push random buttons and click anything that moves, and then looking for unexpected results. For vulnerability testing this will allow you to see if sending a particular chunk of data to a particular input has a result of allowing you to do something you shouldn't. This is like yelling random words and numbers at a person and finding that "yellow 4 fish dog trouser press 9" makes them drop there wallet.

Reverse engineering is a process where you take a finished application, and work out what it does, how it does it and then aim towards replicating all of this in your own application.

appreciate the analogy.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...