Not logged in
Talk
Contributions
Create account
Log in
Navigation
Main page
About
People
Publications
Teaching
Resources
Research Blog
Wiki Functions
Recent changes
Help
Licensing
Page
Discussion
Edit
View history
Editing
Software Engineering (Fall 2025)
(section)
From CommunityData
Jump to:
navigation
,
search
Warning:
You are not logged in. Your IP address will be publicly visible if you make any edits. If you
log in
or
create an account
, your edits will be attributed to your username, along with other benefits.
Anti-spam check. Do
not
fill this in!
=== October 30 (Thursday) -- Evidence Part 1: Static Analysis, Fuzzing, and Scanning === '''Before Class:''' * Read [https://canvas.uw.edu/courses/1838606/files/folder/Week%206?preview=140453242 Reading Note 10] * Watch my mini-lecture on [https://canvas.uw.edu/courses/1838606/files/folder/Week%206?preview=140336974 Static Analysis, Fuzzing, and Scanning] * Watch this lecture from [https://youtu.be/_HUcBzYuWmM?si=rfGRBEFz3PpY3q08 Marcel Bohme: "On the Surprising Efficiency and Exponential Cost of Fuzzing"] * Read [https://canvas.uw.edu/courses/1838606/files/folder/Week%206?preview=140336950 Chapter 9] in Oram & Wilson's '''Making Software: An Automated Fault Prediction System''', chapter written by Weyuker and Ostrand '''Class Goals:''' * Discuss Reading Note 10 * Standup * Run [[ESLint]] on your code. What issues did you find? Any good user stories? This might help you with task 5! * Final round of planning poker * Hands-on / triage issues with Task 5 '''Class Materials:''' * [https://canvas.uw.edu/courses/1838606/files/folder/Week%206?preview=141089765 Discussion board] * [https://uw.hosted.panopto.com/Panopto/Pages/Viewer.aspx?id=71d8f707-17f4-4104-9e20-b3860172af00 Panopto recording] '''Optional Resources''' * If you didn't follow the Fuzzing video, try this [https://www.youtube.com/watch?v=17ebHty54T4 overview of Fuzzing from David Brumley] and then give the Bohme lecture another try :) * The [https://en.wikipedia.org/wiki/Fuzzing coverage of Fuzzing on Wikipedia] is also quite good. * [https://faculty.washington.edu/lagesse/publications/ICSE2023.pdf This great paper describes using architectural and specification documents in predictions] of vulnerabilities -- written by Poozhithara, Asuncion, and Lagesse here at UW Bothell <!-- Ch 10-11 in making software -->
Summary:
Please note that all contributions to CommunityData are considered to be released under the Attribution-Share Alike 3.0 Unported (see
CommunityData:Copyrights
for details). If you do not want your writing to be edited mercilessly and redistributed at will, then do not submit it here.
You are also promising us that you wrote this yourself, or copied it from a public domain or similar free resource.
Do not submit copyrighted work without permission!
To protect the wiki against automated edit spam, we kindly ask you to solve the following CAPTCHA:
Cancel
Editing help
(opens in new window)
Tools
What links here
Related changes
Special pages
Page information
