A security analyst has been tasked with assessing a new API. The analyst needs to be able to test for a variety of different inputs, both malicious and benign, in order to close any vulnerabilities. Which of the following should the analyst use to achieve this goal?
The analyst should use fuzz testing to achieve the goal of testing a variety of different inputs, both malicious and benign. Fuzz testing involves providing invalid, unexpected, or random data inputs to a program or API to identify vulnerabilities and ensure it can handle a wide range of inputs without failing or exposing security issues.
The best answer is C. Fuzz testing. Fuzz testing involves providing a variety of unexpected or random inputs to a program or API to identify vulnerabilities and ensure it can handle a wide range of inputs without failing or exposing security issues.
Fuzz testing (or fuzzing) is a software testing technique that involves providing invalid, unexpected, or random data inputs to a computer program. The purpose is to discover coding errors and security loopholes by sending a range of inputs to the application and observing how it handles them