How API Fuzzing Exposes Hidden Security Flaws

Failed to add items

Sorry, we are unable to add the item because your shopping cart is already at capacity.

Add to basket failed.

Please try again later

Add to wishlist failed.

Please try again later

Remove from wishlist failed.

Please try again later

Adding to library failed

Please try again

Follow podcast failed

Unfollow podcast failed

How API Fuzzing Exposes Hidden Security Flaws

Listen for free

View show details

Lucas and Luna dig into API fuzzing — why sending random garbage to your endpoints is one of the most effective ways to find vulnerabilities before attackers do. They walk through a real case: a fintech startup that fuzzed its payment API and discovered an integer overflow that would have let a bad actor charge negative amounts. They explain how property-based testing frameworks like QuickCheck and Rust's proptest apply fuzzing logic to API contracts, catching edge cases that human-written tests miss. The episode covers input generation strategies, stateful vs. stateless fuzzing, and why most teams don't fuzz until after a breach. If you build or maintain an API, this episode will change how you think about test coverage. #API #Fuzzing #Security #SoftwareTesting #PropertyBasedTesting #EdgeCases #Vulnerability #Fintech #Rust #QuickCheck #DevTools #Business #Technology #FexingoBusiness #BusinessPodcast #LucasAndLuna #TheDeveloperToolsPodcast #Episode52 Keep every episode free: buymeacoffee.com/fexingo

No reviews yet