Do you fuzz test this application? Show an example of a target, please.
Please elaborate a bit on what you’re after. We definitely test the core parts of the software with invalid, malformed, or unexpected inputs.
I’m planning to fuzz and want to decide on a target
The most important targets would be the ThinLinc master service (VSM server) and the ThinLinc Web Access service. These are the two login interfaces for a ThinLinc system.
Our native clients (desktop applications) connect to the master service via SSH. Our web client connects via the Web Access service. Some info about the ports used here:
https://www.cendio.com/resources/docs/tag/tcp-ports_server.html
1 Like