Fuzz testing or Fuzzing is a software testing technique which consists of finding implementation bugs using random data injection. Fuzz scripts generate malformed data and pass it to the particular target entity to verify its overflow capacity. Metasploit provides several fuzzing modules that can be helpful in exploit development. Let us explore more about the basics of fuzzing and how Metasploit modules can be used as potential fuzzers.
Before we jump to Metasploit fuzzer modules, let us have a brief overview of fuzzing and its types.
Fuzzing is treated as a black box testing technique where we test for the maximum overflow capacity of the software. Fuzzing is actively used to find bugs in applications.