Efficient greybox fuzzing to detect memory errors
Greybox fuzzing is a proven and effective testing method for the detection of security
vulnerabilities and other bugs in modern software systems. Greybox fuzzing can also be …
vulnerabilities and other bugs in modern software systems. Greybox fuzzing can also be …
Fitness guided vulnerability detection with greybox fuzzing
RK Medicherla, R Komondoor… - Proceedings of the IEEE …, 2020 - dl.acm.org
Greybox fuzzing is an automated test-input generation technique that aims to uncover
program errors by searching for bug-inducing inputs using a fitness-guided search process …
program errors by searching for bug-inducing inputs using a fitness-guided search process …
TIFF: using input type inference to improve fuzzing
Developers commonly use fuzzing techniques to hunt down all manner of memory
corruption vulnerabilities during the testing phase. Irrespective of the fuzzer, input mutation …
corruption vulnerabilities during the testing phase. Irrespective of the fuzzer, input mutation …
Memlock: Memory usage guided fuzzing
Uncontrolled memory consumption is a kind of critical software security weaknesses. It can
also become a security-critical vulnerability when attackers can take control of the input to …
also become a security-critical vulnerability when attackers can take control of the input to …
Vall-nut: Principled anti-grey box-fuzzing
Greybox fuzzing is a widely used technique for software testing that has been adopted by
practitioners and researchers to disclose a great number of vulnerabilities in various …
practitioners and researchers to disclose a great number of vulnerabilities in various …
Practical anti-fuzzing techniques with performance optimization
Z Zhou, C Wang - IEEE Open Journal of the Computer Society, 2023 - ieeexplore.ieee.org
Fuzzing, an automated software testing technique, has achieved remarkable success in
recent years, aiding developers in identifying vulnerabilities. However, fuzzing can also be …
recent years, aiding developers in identifying vulnerabilities. However, fuzzing can also be …
{FuzzGuard}: Filtering out unreachable inputs in directed grey-box fuzzing through deep learning
Recently, directed grey-box fuzzing (DGF) becomes popular in the field of software testing.
Different from coverage-based fuzzing whose goal is to increase code coverage for …
Different from coverage-based fuzzing whose goal is to increase code coverage for …
Fot: A versatile, configurable, extensible fuzzing framework
Greybox fuzzing is one of the most effective approaches for detecting software
vulnerabilities. Various new techniques have been continuously emerging to enhance the …
vulnerabilities. Various new techniques have been continuously emerging to enhance the …
{FuZZan}: Efficient sanitizer metadata design for fuzzing
Fuzzing is one of the most popular and effective techniques for finding software bugs. To
detect triggered bugs, fuzzers leverage a variety of sanitizers in practice. Unfortunately …
detect triggered bugs, fuzzers leverage a variety of sanitizers in practice. Unfortunately …
Fuzzing Error Handling Code using {Context-Sensitive} Software Fault Injection
Error handling code is often critical but difficult to test in reality. As a result, many hard-to-find
bugs exist in error handling code and may cause serious security problems once triggered …
bugs exist in error handling code and may cause serious security problems once triggered …