Atheris hispida, a venomous viper species
Atheris hispida, a venomous viper species
Atheris hispida. Photo by Bree Mc, soulsurvivor08 at flickr.com, CC BY 2.0, via Wikimedia Commons

Fuzzing (fuzz testing) is a technique of finding flaws in software by providing it unexpected input. It was successful to find numerous serious security issues. Some others could have been found a lot earlier if fuzz testing was conducted.

This week Google released the Atheris fuzzing engine which allows programs written in Python to be tested with libFuzzer, an actively developed library for coverage-guided fuzz testing. Atheris is simple to install and trivial to use.

I will show you how to test a web application based on the Django framework and what can be achieved with a little effort.

TL;DR

Tomasz Nowak

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store