Autodafe: An act of software torture

M Vuagnoux - Proceedings of the 22th Chaos Communication …, 2005 - infoscience.epfl.ch
… high density of such vulnerabilities in modern software. This paper presents an innovative
buffer … As a proof of concept of the efficiency of this technique, a tool called Autodafe has been …

Automatic and lightweight grammar generation for fuzz testing

SY Kim, S Cha, DH Bae - Computers & Security, 2013 - Elsevier
… Second, we propose ACT for the generation of fuzzing grammars. ACT collects constraints
… by a protocol or input string is provided, Autodafé uses each canonical element as a marker. …

[PDF][PDF] The evolving art of fuzzing

J DeMott - Def Con, 2006 - fuzzinginfo.wordpress.com
… umbrella is software quality assurance. Under quality assurance we find software testing …
attributes would be novel and very useful (GPF and Autodafe contain much but not all of this): • …

[PDF][PDF] Fuzzing Framework

P Amini - Black Hat USA, 2007 - dl.packetstormsecurity.net
… We also look at some exciting newcomers in the field such as Autodafé and GPF. … Autodafé,
an Act of Software Torture”18 demonstrates the block-based language used by Autodafé

[PDF][PDF] Flayer: Exposing Application Internals.

W Drewry, T Ormandy - WOOT, 2007 - usenix.org
… Vulnerabilities often lay undiscovered in software due to the complexity of the code paths …
The second technique is exemplified in the work by Vuagnoux called autodafé [32], as well as …

A taint based approach for smart fuzzing

S Bekrar, C Bekrar, R Groz… - … conference on software …, 2012 - ieeexplore.ieee.org
Software security has become an important issue these last years because of the serious …
This method is implemented in several frameworks: Autodafé [20], Peach [21], Sulley [22], …

Effective Fault Injection Model for Variant Network Traffic

TG Kim, SM Cheong, DH Lee - 2007 International Conference …, 2007 - ieeexplore.ieee.org
… , for network based software such as socket application over … the test efficiency, Autodafe
adapts debugging technique with … Generally a network fuzzer acts as client program and sends …

Blendfuzz: A model-based framework for fuzz testing programs with grammatical inputs

D Yang, Y Zhang, Q Liu - … on Trust, Security and Privacy in …, 2012 - ieeexplore.ieee.org
… approach commonly used to detect security vulnerabilities in software [1]. A key aspect of …
in test case generation, while the former will act as guidance in this process. 2) Grammar-…

A Modbus/TCP fuzzer for testing internetworked industrial systems

AG Voyiatzis, K Katsigiannis… - 2015 IEEE 20th …, 2015 - ieeexplore.ieee.org
… implementations in software. The fuzzer … acts as a TCP server waiting for incoming connections
at the IANA-assigned port TCP/502, while the Modbus master (eg, a SCADA system) acts

Full-speed fuzzing: Reducing fuzzing overhead through coverage-guided tracing

S Nagy, M Hicks - 2019 IEEE Symposium on Security and …, 2019 - ieeexplore.ieee.org
… successful approaches for discovering software bugs and security … This acts as a filter for
tracing; restricting the expense of … its tradeoffs on real-world software, we implement UnTracer. …