3. Aboutfuzzing Attempting to cause a program or network to fail by feeding it randomly (or not so) generated data. Generate a lot of craptocrashanapplication.
15. Clasificationcriteria Qualitative Vulnerabilitiesimpact Complexity Widelyused Personal preferences Cuantitative Number of installations Number of knownvulnerabilities Assetvalue Visibility (local, remote) Number of threats (none, few, many)
21. Knowyourenemy Whatkind of applicationis? Network Services Web Applications Libraries ActiveX Whatkind of inputs? Command Line Files Network Forms Environment Variables Url …