Fuzzing” is a security technique that aims to expose flaws in error handling by providing invalid, random, or unexpected data as inputs to computer systems. Here “system” is used generically, and should be read as “function call, program, or shell command.”
What you will be doing is threefold:
- Researching the origins of fuzzing. Where did it start? I want an annotated bibliography for fuzzing or fuzz testing. This is due on November 10th.
- A system which fuzzes linux system calls. Something like the Trinity tool, but writen by you.
- Full documentation and a write-up, providing details on the techniques you used, and what you discovered. Annotated source code should be an integral part of this write-up.