Fuzzer to test robustness against malicious data

emboss / krypt

Platform- and library-independent cryptography for Ruby. The official repo has moved to

https://github.com/krypt/krypt

MIT License

44 stars 12 forks source link

Fuzzer to test robustness against malicious data #14

Open emboss opened 12 years ago

emboss commented 12 years ago

We should write a fuzzer that throws completely random and part random/part hand-crafted data at ASN.1 decode to test for SEGVs/NPEs with regard to malicious data or buffer overflows. The script could be added as an internal test.

emboss commented 12 years ago

Maybe rfuzz or similar gems could save some time.