Demystify the fuzzing methods: A comprehensive survey
S Mallissery, YS Wu - ACM Computing Surveys, 2023 - dl.acm.org
Massive software applications possess complex data structures or parse complex data
structures; in such cases, vulnerabilities in the software become inevitable. The …
structures; in such cases, vulnerabilities in the software become inevitable. The …
Gptfuzzer: Red teaming large language models with auto-generated jailbreak prompts
Large language models (LLMs) have recently experienced tremendous popularity and are
widely used from casual conversations to AI-driven programming. However, despite their …
widely used from casual conversations to AI-driven programming. However, despite their …
{FloatZone}: Accelerating Memory Error Detection using the Floating Point Unit
F Gorter, E Barberis, R Isemann… - 32nd USENIX Security …, 2023 - usenix.org
Memory sanitizers are powerful tools to detect spatial and temporal memory errors, such as
buffer overflows and use-after-frees. Fuzzers and software testers often rely on these tools to …
buffer overflows and use-after-frees. Fuzzers and software testers often rely on these tools to …
[PDF][PDF] Sticky Tags: Efficient and Deterministic Spatial Memory Error Mitigation using Persistent Memory Tags
Spatial memory errors such as buffer overflows still rank among the top vulnerabilities in
C/C++ programs. Despite much research in the area, the performance overhead of (even …
C/C++ programs. Despite much research in the area, the performance overhead of (even …
FCEVAL: An effective and quantitative platform for evaluating fuzzer combinations fairly and easily
X Zhao, C Yang, Z Jia, Y Wang, J Ma - Computers & Security, 2023 - Elsevier
Multiple base fuzzers collaborate as a fuzzer combination. Fuzzer combinations have been
proven to perform more robustly and efficiently when fuzzing complicated real-world …
proven to perform more robustly and efficiently when fuzzing complicated real-world …
Fully Randomized Pointers
Software security continues to be a critical concern for programs implemented in low-level
programming languages such as C and C++. Many defenses have been proposed in the …
programming languages such as C and C++. Many defenses have been proposed in the …
Multi-Dimensional and Message-Guided Fuzzing for Robotic Programs in Robot Operating System
An increasing number of robotic programs are implemented based on Robot Operating
System (ROS), which provides many practical tools and libraries for robot development. To …
System (ROS), which provides many practical tools and libraries for robot development. To …
[PDF][PDF] Facilitating Non-Intrusive In-Vivo Firmware Testing with Stateless Instrumentation
Although numerous dynamic testing techniques have been developed, they can hardly be
directly applied to firmware of deeply embedded (eg, microcontroller-based) devices due to …
directly applied to firmware of deeply embedded (eg, microcontroller-based) devices due to …