Project Springfield: Microsoft’s new AI-based fuzz-testing tool read more at here www.spinonews.com/index.php/item/1019-project-springfield-microsoft-s-new-ai-based-fuzz-testing-tool
Microsoft unveils a first preview of Project Springfield at its Ignite conference in Atlanta. Project Springfield can be considered a tool for fuzz testing, which involves giving software random input in order to uncover vulnerabilities that people could exploit.
Microsoft’s Project Springfield uses artificial intelligence to learn which parts of your software are most critically affected by harmful inputs.
The main component in Project Springfield is SAGE, a fuzz testing tool that Microsoft used to uncover security flaws in Windows 7. Fuzz testing, one of the oldest methods of finding vulnerabilities and bugs in a software.
“Project Springfield works on binaries, with no source code or private symbols needed,” Microsoft says on a website about Project Springfield.
Microsoft says, Project Springfield is a million-dollar bug detector. Because the Microsoft Research development is a fuzz tester that detects vulnerabilities that people could exploit by giving software random input.
According to Microsoft, Project Springfield is ideal for battle-testing apps that allow users to upload documents and other file types that may not be trustworthy. Fuzz testing sees the tool throwing random inputs at your software to look for instances in which those unforeseen actions cause it to crash.
Once you’ve signed up to use it, you can upload your binaries to Project Springfield so it can test your software in the cloud. It’ll then notify you when it’s found a bug and will grant you access to test cases for reproducing the issue and understanding exactly what’s wrong.
Microsoft is offering Springfield in full, for those who are interested. The company announced that any developer or organization can now have access to a free preview of the tool.
Comments
Post a Comment