AI-automated fuzz testing by Code Intelligence
Find bugs and vulnerabilities that truly matter with a single command. Thoroughly test your code with minimal effort from developers and security teams.
Four reasons to use fuzzing for testing code
By subjecting software to unexpected or random inputs, fuzz testing uncovers hidden bugs and flaws that might cause crashes, malfunctions or security breaches.
Detect critical issues
These include buffer overflows, memory corruption andother bugs relevant to memory-unsafe languages.
Uncover issues right after any code change
Fuzzing can be integrated into the development process to test your code automatically as soon as you have an executable program. It can be applied at the unit, integration, and system testing stages.
Identify the root cause in minutes
Coverage-Guided fuzzing analyzes source code and show exactly where an issue occurs. This makes the bug easy to reproduce, allowing developers to identify the root cause in minutes.
Comply with industry standards and regulations
Fuzz testing is highly recommended bymany norms and standards, including ISA/IEC 62443, ISO/SAE 21434, Automotive SPICE, FDA's cybersecurity guidance, AAMI TIR 57:2016, IEC 81001-5-1.
What our clients say about Code Intelligence
ANDREAS LACKNER
SENIOR SOFTWARE DEVELOPMENT ENGINEER, VECTOR INFORMATIK
“By reducing the manual effort for creating and integrating fuzz tests, we are able to bring our cycle time down and further improve the quality of our embedded software.”
MICHAEL VON WENCKSTERN
PRODUCT CYBERSECURITY GOVERNANCE, RISK AND COMPLIANCE SPECIALIST, CONTINENTAL AG
“One of the biggest advantages of instrumented fuzz testing is that you can execute your code in a Software-in-the-Loop simulator. My favourite part of instrumented fuzzing is that finding the root cause is so easy, and for a manager, it means I can save budget.”
ANDREAS WEICHSLGARTNER
SENIOR TECHNICAL SECURITY ENGINEER, CARIAD
"Thanks to Code Intelligence fuzzing approaches, our security testing became significantly more effective. All our developers are now able to fix business critical bugs early in the development process, without false-positives."
THOMAS DOHMKE
CEO, GITHUB
”Code Intelligence helps developers ship secure software by providing the necessary integrations to test their code at each pull request, without ever having to leave their favorite environment. It's like having an automated security expert always by your side.”
THOMAS TSCHERSICH
CHIEF SECURITY OFFICER, DEUTSCHE TELEKOM AG
”With Code Intelligence, securing your software can take new paths in terms of quality and efficiency.”
ECKART HEYNE
PRODUCT CYBERSECURITY AND PRIVACY OFFICER, CONTINENTAL AG
“Using fuzz testing by Code Intelligence helped our team pass ASPICE for Cybersecurity assessments and obtain ISO 21434 certification. Our products are now more secure. We presented the OEM with the fuzzing results and received positive feedback.”
SALEH HEYDARI
VP OF SOFTWARE ENGINEERING, XOS TRUCKS
”Thanks to Code Intelligence we were able to remediate deeply hidden issues, allowing us to ensure our vehicular software’s optimal functionality and safety. Coming up with the right unit tests for these cases would have been super difficult. With Code Intelligence’s AI-powered tests, we had the first finding within hours!”
From 0 to 80 in 2 seconds. Code Coverage with CI Fuzz.
Find truly relevant and hidden issues and dig deeper every minuteResolve issues seamlessly with instant access to a full stack trace at your fingertips.
Boost efficiency and reduce the number of tests neededLet CI Fuzz automatically search for issues in the code and dig deeper every minute.
Fix business critical bugs early in the development processMaximize pipeline performance that doesn't compromise software integrity.
%2520-%2520Cropped.jpg&f=jpg&w=240)
%2fFounder%2520%252B%2520Team%2fthomastschersich1-1.png&f=jpg&w=240)
Uncover bugs and vulnerabilities
without human interaction
CI Fuzz by Code Intelligence is an AI-automated Coverage-Guided Fuzz testing solution that lowers barriers to secure code. With its AI Test Agent, it automates manual tasks associated with fuzzing and autonomously detects bugs and vulnerabilities.
%2fLogos%2fCI%2520Logos%2fLogo_code%2520Intelligence_klein_wei%25C3%259F-1.png%3fwidth%3d75%26amp%3bheight%3d66%26amp%3bname%3dLogo_code%2520Intelligence_klein_wei%25C3%259F-1.png&f=jpg&w=240 "Logo_code Intelligence_klein_weiß-1")
Find what other security tools miss
Learn exactly where bugs are hidden and get them fixed
Discover issues with a single command
Save up to 1,000 hours of manual work
Achieve code coverage goals autonomously
Comply with industry standards
These bugs were uncovered without human interaction
CI Fuzz, with its AI test Agent, autonomously finds bugs in open-source projects - even in those that have been fuzzed for years.
Heap-Based Use-After-Free
in wolfSSL
HeapBuffer Overflow in AWS C Common Library
Dynamic Stack Buffer Overflow in Abseil C++ library
Heap-Based Use-After-Free
in wolfSSL
HeapBuffer Overflow in AWS C Common Library
Dynamic Stack Buffer Overflow in Abseil C++ library
Industries that benefit most from fuzz testing
Automotive suppliers and OEMs fuzz tests control systems, ADAS, software for autonomous vehicles. This helps withISO 21434 compliance.
With fuzzing, they can simulate AUTOSAR and test software at system level.
Fuzz testing is used to test medical equipment and devices to prevent malfunctions, patient injuries and even death.
This helps ensure that medical software meets the FDA's and MDR's security requirements.
Automation machinery manufacturers
Fuzz testing is critical for testing control systems (PLCs, DCS), industrial robots, and IoT software. It is recommended by ISA/IEC 62443-4-1 Security for industrial automation and control systems.
Telecommunications
Fuzzing is used to test the software in network devices like routers, switches, and base stations and to validate control and communication algorithms in 5G networks and Internet of Things (IoT) devices.
Energy and Utilities
Fuzzing tests software for managing electrical grids, including load balancing and fault detection.
It is also used for validating control systems used in exploration, drilling, and production operations.
Aerospace and Defence
Fuzz testing is used to test and validate software for aircraft control systems, navigation, communication, and monitoring systems, as well as for drones and other Unmanned Aerial Vehicles (UAVs).
Dive into software security testing
Join Industry Leaders and follow in the footsteps of companies like CARIAD, Bosch, and Continental. Detect critical bugs early in the testing stages and achieve compliance with industry standards.
Book your free demo with one of our senior engineers now and take the first step towards robust, secure software development with Code Intelligence.
- Automate software testing for embedded systems.
- Detect critical bugs & vulnerabilities early in the development.
- Uncover only actual issues without false positives.
- Enable developers to reproduce & fix issues in minutes, not weeks.
- Ensure compliance with industry standards.
Want to secure Java or JavaScript projects?
Test your Java code with our open-source fuzzer,Jazzer, and your JavaScript code withJazzer.js. Both tools are free to use for testing open-source projects. If you want to test closed-source projects, pleasecontact us.
Both fuzzersare used by Google in the OSS-Fuzz projects and help uncover 1382 issues.