undefined | Better HN

0 pointstptacek11mo ago0 comments

But that's exactly what people were saying about fuzzer farms in the mid-2000s, in the belief that artisanal audits would always be the dominant means of uncovering bugs. The truth was somewhere in between (it's still humans, but working at a higher layer of abstraction than they were before) but the fuzzer people were hugely right.

If you can reliably get x% lucky finding vulnerabilities for Y$ cost, then you simply scale that up to find more vulnerabilities.

0 comments

jdefr8911mo ago

I don’t recall anyone saying anything of the sort back then about fuzzing? Back then you could run the most basic fuzzer and find tons of bugs! Where did you see people complaining about fuzzers??

tptacekOP11mo ago

If you go digging through the blogosphere of the time you'll turn it up. I feel like this is ~2006?

1 more reply

j / k navigate · click thread line to collapse

0 comments

jdefr8911mo ago

I don’t recall anyone saying anything of the sort back then about fuzzing? Back then you could run the most basic fuzzer and find tons of bugs! Where did you see people complaining about fuzzers??

tptacekOP11mo ago

If you go digging through the blogosphere of the time you'll turn it up. I feel like this is ~2006?

1 more reply

j / k navigate · click thread line to collapse