Internet of Things (IoT) devices have rooted themselves in the everyday life of billions of
people. Thus, researchers have applied automated bug finding techniques to improve their …

Existing coverage-based fuzzers usually use the individual control flow graph (CFG) edge
coverage to guide the fuzzing process, which has shown great potential in finding …

Researchers have proposed many optimizations to improve the efficiency of fuzzing, and
most optimized strategies work very well on their targets when running in single mode with …

Fuzzing embedded systems is hard. Their key components–microcontrollers–are highly
diverse and cannot be easily virtualized; their software may not be changed or instrumented …

Autonomous driving carries the promise to drastically reduce the number of car accidents;
however, recently reported fatal crashes involving self-driving cars show that such an …

The Universal Serial Bus (USB) connects external devices to a host. This interface exposes
the OS kernels and device drivers to attacks by malicious devices. Unfortunately, kernels …

Fuzzing is arguably the most practical approach for detecting security bugs in software, but a
non-trivial extent of efforts is required for its adoption. To be effective, high-quality fuzz …

Most programs with command-line interface (CLI) have dozens of command-line options
(eg,-l,-F,-R for ls) to alternate the operation of the programs. Thus, depending on the option …

Existing mutation based fuzzers tend to randomly mutate the input of a program without
understanding its underlying syntax and semantics. In this paper, we propose a novel on-the …

Hybrid testing combines fuzz testing and concolic execution. It leverages fuzz testing to test
easy-to-reach code regions and uses concolic execution to explore code blocks guarded by …