Coverage-guided fuzz testing for cyber-physical systems
Fuzz testing is an indispensable test-generation tool in software security. Fuzz testing uses
automated directed randomness to explore a variety of execution paths in software, trying to …
automated directed randomness to explore a variety of execution paths in software, trying to …
Semi-valid input coverage for fuzz testing
We define semi-valid input coverage (SVCov), the first coverage criterion for fuzz testing. Our
criterion is applicable whenever the valid inputs can be defined by a finite set of constraints …
criterion is applicable whenever the valid inputs can be defined by a finite set of constraints …
CSEFuzz: fuzz testing based on symbolic execution
Z Xie, Z Cui, J Zhang, X Liu, L Zheng - IEEE Access, 2020 - ieeexplore.ieee.org
Fuzz testing has been successful in finding defects of various software packages. These
defects include file parsing, image processing, Internet browsers, and network protocols …
defects include file parsing, image processing, Internet browsers, and network protocols …
Efficient fuzz testing leveraging input, code, and execution
N Havrikov - 2017 IEEE/ACM 39th International Conference on …, 2017 - ieeexplore.ieee.org
Any kind of smart testing technique must be very efficient to be competitive with random fuzz
testing. State-of the-art test generators are largely inferior to random testing in real world …
testing. State-of the-art test generators are largely inferior to random testing in real world …
Socfuzzer: Soc vulnerability detection using cost function enabled fuzz testing
The modern System-on-Chips (SoCs), with numerous complex and heterogeneous
intellectual properties (IPs), and the inclusion of highly-sensitive assets, become the target of …
intellectual properties (IPs), and the inclusion of highly-sensitive assets, become the target of …
Fuzzfactory: domain-specific fuzzing with waypoints
Coverage-guided fuzz testing has gained prominence as a highly effective method of finding
security vulnerabilities such as buffer overflows in programs that parse binary data …
security vulnerabilities such as buffer overflows in programs that parse binary data …
Binary-oriented hybrid fuzz testing
D Fangquan, D Chaoqun, Z Yao… - 2015 6th IEEE …, 2015 - ieeexplore.ieee.org
In software security testing, fuzz testing and symbolic execution are two main testing
techniques. Fuzz testing finds program bugs by executing the target program with random …
techniques. Fuzz testing finds program bugs by executing the target program with random …
Jigsaw: Efficient and scalable path constraints fuzzing
Coverage-guided testing has shown to be an effective way to find bugs. If we model
coverage-guided testing as a search problem (ie, finding inputs that can cover more …
coverage-guided testing as a search problem (ie, finding inputs that can cover more …
Leveraging Hardware Probes and Optimizations for Accelerating Fuzz Testing of Heterogeneous Applications
There is a growing interest in the computer architecture community to incorporate
heterogeneity and specialization to improve performance. Developers can create …
heterogeneity and specialization to improve performance. Developers can create …
Nyx-net: network fuzzing with incremental snapshots
Coverage-guided fuzz testing (" fuzzing") has become mainstream and we have observed
lots of progress in this research area recently. However, it is still challenging to efficiently test …
lots of progress in this research area recently. However, it is still challenging to efficiently test …