P.S. I Love You: The One (Mayhem)

David Brumley
March 25, 2021
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

The To All The Tools I’ve Loved Before series reaffirmed that there’s true love still out there. How are Your Apps and Mayhem doing you ask?

Find out in this sequel and final installment. Part one (SCA)Part two (SAST)Part three (IAST). Part four (Open Source Fuzzers)

--

Dear Mayhem,

I was so moved by the thoughtful, original poem you wrote me for this year’s Valentine’s day. The zero-day you presented me was already lovely, but, oh, the poem! It was the poem that nearly sent me straight into a buffer overflow! 

L0v3 S0nn3t 

 

I crave your code, your carefully crafted statements, your beautiful logic.

Silent and starving, I prowl through binaries.

SAST does not nourish me, false-positives disrupt me, all day.

I hunt for defects in your nightly build.

 

I pace around hungry, analyzing your code,

hunting for 0-days, for bugs

like a flytrap ready to close.

I was swoon. I thought I would crash right then and there! 

So, you can imagine my disappointment when I found out that it wasn’t you who authored it, but Pablo Neruda. I know stringing together properly formed data isn’t your strong suit, but you have to know that I accept you for the non-functional tester you are! That’s what makes you so powerful. Not everyone may have the ability to see that, but I assure you that I do.

It was a beautiful gesture, but let’s stick to malform data from now on, okay? Plus, I have all these shiny zero-days to look at. Who needs a poem?

Oh, the videographer finally got around to sending over our wedding video. I can’t wait for our vow renewal next year!

Always and forever,

Your Apps

--

Are all these references flying over your head? Then, you ought to check out Netflix’s hit teen romcom series: To All The Boys: P.S. I Still Love You.

Share this post

How about some Mayhem in your inbox?

Subscribe to our monthly newsletter for expert insights and news on DevSecOps topics, plus Mayhem tips and tutorials.

By subscribing, you're agreeing to our website terms and privacy policy.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Add Mayhem to Your DevSecOps for Free.

Get a full-featured 30 day free trial.

This is some text inside of a div block.

Complete API Security in 5 Minutes

Get started with Mayhem today for fast, comprehensive, API security. 

Get Mayhem

Maximize Code Coverage in Minutes

Mayhem is an award-winning AI that autonomously finds new exploitable bugs and improves your test suites.

Get Mayhem