Fuzzers for stateful systems: Survey and Research Directions
Fuzzing is a very effective testing methodology to find bugs. In a nutshell, a fuzzer sends
many slightly malformed messages to the software under test, hoping for crashes or …
many slightly malformed messages to the software under test, hoping for crashes or …
[HTML][HTML] Embedded fuzzing: a review of challenges, tools, and solutions
Fuzzing has become one of the best-established methods to uncover software bugs.
Meanwhile, the market of embedded systems, which binds the software execution tightly to …
Meanwhile, the market of embedded systems, which binds the software execution tightly to …
[PDF][PDF] Large language model guided protocol fuzzing
How to find security flaws in a protocol implementation without a machine-readable
specification of the protocol? Facing the internet, protocol implementations are particularly …
specification of the protocol? Facing the internet, protocol implementations are particularly …
Nsfuzz: Towards efficient and state-aware network service fuzzing
As an essential component responsible for communication, network services are security
critical, thus, it is vital to find their vulnerabilities. Fuzzing is currently one of the most popular …
critical, thus, it is vital to find their vulnerabilities. Fuzzing is currently one of the most popular …
{StateFuzz}: System {Call-Based}{State-Aware} Linux Driver Fuzzing
Coverage-guided fuzzing has achieved great success in finding software vulnerabilities.
Existing coverage-guided fuzzers generally favor test cases that hit new code, and discard …
Existing coverage-guided fuzzers generally favor test cases that hit new code, and discard …
Bleem: Packet sequence oriented fuzzing for protocol implementations
Protocol implementations are essential components in network infrastructures. Flaws hidden
in the implementations can easily render devices vulnerable to adversaries. Therefore …
in the implementations can easily render devices vulnerable to adversaries. Therefore …
SNPSFuzzer: A fast greybox fuzzer for stateful network protocols using snapshots
Greybox fuzzing has been widely used in stateless programs and has achieved great
success. However, most state-of-the-art greybox fuzzers have slow speed and shallow state …
success. However, most state-of-the-art greybox fuzzers have slow speed and shallow state …
Systematically Detecting Packet Validation Vulnerabilities in Embedded Network Stacks
PC Amusuo, RAC Méndez, Z Xu… - 2023 38th IEEE/ACM …, 2023 - ieeexplore.ieee.org
Embedded Network Stacks (ENS) enable low-resource devices to communicate with the
outside world, facilitating the development of Internet of Things and Cyber-Physical Systems …
outside world, facilitating the development of Internet of Things and Cyber-Physical Systems …
Greybox fuzzing of distributed systems
Grey-box fuzzing is the lightweight approach of choice for finding bugs in sequential
programs. It provides a balance between efficiency and effectiveness by conducting a …
programs. It provides a balance between efficiency and effectiveness by conducting a …
EDHOC-Fuzzer: An EDHOC protocol state fuzzer
K Sagonas, T Typaldos - Proceedings of the 32nd ACM SIGSOFT …, 2023 - dl.acm.org
EDHOC is a compact and lightweight authenticated key exchange protocol proposed by the
IETF, whose design focuses on small message sizes, in order to be suitable for constrained …
IETF, whose design focuses on small message sizes, in order to be suitable for constrained …