Usually fuzzers are used to test the parameters of an application. It compromises of various techniques like providing invalid, unexpected, or random data to the inputs of an application. Generally fuzzing is used for security assessments. In short, its like automation of searching exploits and security flaws in software. Previously, we have seen how fuzzers were being used for quick hunting of bugs. So today we unveil a small and dynamic browser fuzzer X-Fuzzer. X-Fuzzer has been designed by our Vulnerability Research Specialist Mr. Vinay Katoch.
The fuzzer is still in beta state. Currently it doesn’t go for infinite iterations and has many other limits. Though its code can be altered and the changes can be made for desired results. We tested this fuzzer on Unix platform and obtained success on some browser!
This was a small yet useful effort. The fuzzer has been hosted on Google code and can be downloaded from here. Stay tuned to check more things as we move on.