Episode #285 of the
Security Now! podcast discusses
fuzz testing. Wikipedia defines it as:
Fuzz testing or fuzzing is a software testing technique that provides invalid, unexpected, or random data to the inputs of a program. If the program fails (for example, by crashing or failing built-in code assertions), the defects can be noted.
Perl has a
strong history of automated tests, and I expected that perl and
CPAN would have something to offer on
fuzz testing, but a brief search revealed no relevant modules, tools or documentation. Does the nature of perl (i.e. being an interpreted language) make
fuzz testing less relevant than e.g. web browsers or operating systems?
--
No matter how great and destructive your problems may seem now, remember, you've probably only seen the tip of them. [1]