fuzzing

Closed. This question is off-topic. It is not currently accepting answers. Learn more . Want to improve this question? Update the question so it's on-topic for Stack Overflow. Are there any fuzzer libraries out there for Java? I'd like to sprinkle fuzzing capabilities into existing Java web-based automated integration tests. I've done a lot of searching but I'm coming up empty for a library that supports HTTP/S. There are a lot of Python tools, but I'd like to stick with Java since that's what the programmers are using. JBroFuzz essentially has the fuzzing capabilities I need, but I need an

I want to fuzz-test a XML-parser and wonder if there are some appropriate fuzzers. It would be nice not only generate random garbage, but take advantages of existing schema specification like XSD or DTD. Vineet Reynolds Following are some XML fuzzers that I chanced upon, during a search several months back: untidy . This is does not appear to be in active development, with the last update in 2007. (Project no longer available on Sourceforge, for posterity see archive.org for partial content , and packetstorm for download. It was added to Peach-1.0, but no longer appears in the Peach-3.1

I have problems using the subprocess module to obtain the output of crashed programs. I'm using python2.7 and subprocess to call a program with strange arguments in order to get some segfaults In order to call the program, I use the following code: proc = (subprocess.Popen(called, stdout=subprocess.PIPE, stderr=subprocess.PIPE)) out,err=proc.communicate() print out,err called is a list containing the name of the program and the argument (a string containing random bytes except the NULL byte which subprocess doesn't like at all) The code behave and show me the stdout and stderr when the program