Fuzzing for Software Security Testing and Quality Assurance (2^nd Ed.)

The second edition of the popular Artech House title, Fuzzing for Software Security Testing and Quality Assurance, provides practical and professional guidance on how and why to integrate fuzzing into the software development lifecycle. This edition introduces fuzzing as a process, goes through commercial tools, including American Fuzzy Lop (AFL) and the emerging full fuzz test automation systems, and explains how to select the right one for software development projects.

This book is a powerful new resource to build secure, high-quality software and helps engineers find and patch flaws in software before harmful viruses, worms, and Trojans can use these vulnerabilities to rampage systems. Traditional software programmers and testers will learn how to make fuzzing a standard practice that integrates seamlessly with all development activities.

- Introduction
- Software Vulnerability Analysis
- Quality Assurance and Testing
- Fuzzing Metrics
- Building and Classifying Fuzzers
- Target Monitoring
- Advanced Fuzzing
- Fuzzer Comparison
- Fuzzing Case Studies

Ari Takanen is an investor and startup advisor at Kielo Growth business incubator company. He is also cofounder of Codenomicon, a software fuzzing tool company acquired by Synopsys. A noted speaker and author on software testing and security, he is a graduate of Finland’s University of Oulo, where he did research with the university’s Secure Programming Group.