Certified Ethical Hacker (CEH v10) — Question 68

To determine if a software program properly handles a wide range of invalid input, a form of automated testing can be used to randomly generate invalid input in an attempt to crash the program.
What term is commonly used when referring to this type of testing?

Answer options

• A. Randomizing
• B. Bounding
• C. Mutating
• D. Fuzzing

Correct answer: D

Explanation

The correct answer is D, Fuzzing, which specifically refers to the technique of providing unexpected or random data to a program to identify vulnerabilities. Options A, B, and C do not accurately describe this method; Randomizing refers to changing input values in a general sense, Bounding involves setting limits on input ranges, and Mutating refers to modifying existing inputs rather than generating new invalid ones.