Hacker News new | past | comments | ask | show | jobs | submit login

Fuzzing is like rolling dice- there's only a chance it'll find the lurking issues. Unit tests enforce contracts and assist future maintenance.

I sincerely hope the lack of unit tests is because it's covered by existing tests.




Well, with tools like AFL (American Fuzzy Loop) it is more like rolling dice to find a path through a maze of numbered doors - adjusting the dice rolled (6-sided, 2-sided ...) based on how far one has come, and how many doors there is to choose from... ok, it's not really like rolling dice any more at all. Did you read:

http://lcamtuf.blogspot.no/2014/11/pulling-jpegs-out-of-thin...


"American Fuzzy Lop" - it's named after a breed of rabbit where the ears sag down.


And here I thought it was named after some obscure cereal brand ;-)




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: