Mayhem for API automates testing REST APIs by bringing the full might of fuzzing methodology to API testing. With the guidance of an API specification , Mayhem for API provides accurate and informative test coverage tailored to any REST API ... Read More

Mayhem for API provides developers with security, verfication, and performance data before code gets deployed to help them build quality APIs faster. Current API testing does not go deep enough, if at all, in probing performance and reliability. Mayhem for API brings fuzzing automation technology to the realm of API ... Read More

Mayhem is an application security testing platform for developers and security practitioners alike to collaborate and easily organize, manage, and test their applications for defects and security vulnerabilities. At its core, Mayhem uses an advanced fuzzer that analyzes a running Linux process ... Read More

CWE-476 Null pointer dereference A null pointer dereference is a programming error that can occur when a program attempts to deference a null pointer. This can happen when the programmer mistakenly assumes that a pointer pointing to NULL is actually pointing to a valid object. If the program dereferences the ... Read More

CWE-20 Improper Imput Validation in a web application can allow an attacker to supply malicious user input that is then executed by the vulnerable web application. Improper input validation can be used to bypass security mechanisms, such as authentication and authorization controls. It can also be used to inject malicious ... Read More

Dynamically managed services are a great way to reduce the administrative burden of keeping track of which servers are running which services. However, if these services are not properly controlled, it can lead to security vulnerabilities. For example, if a service is dynamically created and assigned to a server without ... Read More

In computer science, reachability is the ability to find a path from one node in a graph to another. A reachable assertion is an assertion that specifies a condition that must be satisfied for a particular path to be considered reachable. Reachable assertions are used in several different contexts, including ... Read More

A divide by zero error is typically caused when a program attempts to divide a number by zero. This can happen in mathematical calculations, or when trying to parse data that contains invalid characters. In some cases, it may be possible to work around the issue by changing the data ... Read More

CWE-400 Uncontrolled Resource Consumption occurs when an application does not properly control the number and/or size of resources that it allocates, it can consume too many resources. This can lead to performance degradation, denial-of-service conditions, and resource leaks. In some cases, uncontrolled resource consumption may allow attackers to perform resource ... Read More

CWE 401- Missing Release Of Memory After Effective Lifetime can occur when a program does not release memory after it is finished using it, that memory is said to be "leaked". A memory leak can occur when an allocated block of memory is no longer needed but the program fails ... Read More