Fuzzing (C) is a security testing technique that involves sending invalid, unexpected, or random inputs to a device or application to discover vulnerabilities like buffer overflows or crashes.
Brute force attacks (A) target authentication, not input validation.
Launching known exploits (B) is penetration testing but not fuzzing.
(D) and (E) describe environmental or stress testing.
GICSP highlights fuzzing as a proactive testing method to uncover ICS device vulnerabilities.
[Reference:, , GICSP Official Study Guide, Domain: ICS Security Operations & Incident Response, , OWASP Fuzzing Resources, , GICSP Training on Vulnerability Assessment Techniques]
Submit