فازینگ برای تست امنیت نرمافزار و تضمین کیفیت
Fuzzing for Software Security Testing and Quality Assurance
معرفی کتاب «فازینگ برای تست امنیت نرمافزار و تضمین کیفیت» (با عنوان لاتین Fuzzing for Software Security Testing and Quality Assurance) نوشتهٔ Daniel Estulin و Ari Takanen; Jared D. DeMott; Charles Miller، منتشرشده توسط نشر Artech House Publishers در سال 2018. این کتاب در فرمت pdf، زبان انگلیسی ارائه شده است.
This newly revised and expanded second edition of the popular Artech House title, Fuzzing for Software Security Testing and Quality Assurance, provides practical and professional guidance on how and why to integrate fuzzing into the software development lifecycle. This edition introduces fuzzing as a process, goes through commercial tools, and explains what the customer requirements are for fuzzing. The advancement of evolutionary fuzzing tools, including American Fuzzy Lop (AFL) and the emerging full fuzz test automation systems are explored in this edition. Traditional software programmers and testers will learn how to make fuzzing a standard practice that integrates seamlessly with all development activities. It surveys all popular commercial fuzzing tools and explains how to select the right one for software development projects. This book is a powerful new tool to build secure, high-quality software taking a weapon from the malicious hacker's arsenal. This practical resource helps engineers find and patch flaws in software before harmful viruses, worms, and Trojans can use these vulnerabilities to rampage systems. The book shows how to make fuzzing a standard practice that integrates seamlessly with all development activities. Fuzzing for Software Security Testing and Quality Assurance gives software developers a powerful new tool to build secure, high-quality software, and takes a weapon from the malicious hackers' arsenal. This practical resource helps developers think like a software cracker, so they can find and patch flaws in software before harmful viruses, worms, and Trojans can use these vulnerabilities to rampage systems. Traditional software programmers and testers learn how to make fuzzing a standard practice that integrates seamlessly with all development activities. The book progresses through each phase of software development and points out where testing and auditing can tighten security. It surveys all popular commercial fuzzing tools and explains how to select the right one for a software development project. The book also covers those cases where commercial tools fall short and developers need to build their own custom fuzzing tools. This comprehensive reference goes through each phase of software development and points out where testing and auditing can tighten security. It surveys all popular commercial fuzzing tools and explains how to select the right one for a software development project. The book also identifies those cases where commercial tools fall short and when there is a need for building your own fuzzing tools This book approaches security flaws in software with the mind-set of a hacker and explores the method they use and shows how to make fuzzing a standard practice that integrates with other development activities. It goes through each phase of software development and points out where testing and auditing can tighten security.
دانلود کتاب فازینگ برای تست امنیت نرمافزار و تضمین کیفیت