Fuzzing and security testing tools

I just read an interesting presentation called Real World Fuzzing.

It explains about testing your software, testing other people's software and even hacking via examples of cracking things like

• iPhone
• PCRE
• webkit
• libpng
• freeciv

The nice thing about this presentation is that it gives you a methodology of testing software (in this case, for security bugs) via a combined approach of fuzzing and code coverage analysis.

On the same note, I just read a blog post filled with links to security testing tools, book recommendations and a few words on each tool.

Happy reading.