So i just finished writing a fuzzing harness for chrome incorporating Google's address sanitizer but just realized I have no idea about how I am going to go about generating test cases. I was thinking something like pulling down a list of all html elements and css parameters then randomly assigning the parameters and then randomly filling blocks of html elements etc. I have no idea if that would work well. I would appreciate some ideas on test case generation for browsers (I did some research but found very little solid information on the topic).
ps. Merry Christmas if you celebrate it or Happy December if you don't
