Fuzzing is a cybersecurity technique aiming to locate security flaws or errors that a website, a mobile application or even an operating system may have. How is it achieved? By introducing random, invalid or unexpected information into the system, data could trigger the errors that the researcher is looking for.
When testing software or mobile apps, fuzzing focuses on identifying bugs. In the case of web applications, vulnerabilities will be always under the researcher’s radar.
A large number of open-source tools are now available for fuzzing tests. Many of the researchers working on the deployment of these techniques even participate in global bug bounty programs.