How to find security flaws in a protocol implementation without a machine-readable
specification of the protocol? Facing the internet, protocol implementations are particularly …

Server fuzzing is difficult. Unlike simple command-line tools, servers feature a massive state
space that can be traversed effectively only with well-defined sequences of input messages …

We present a new benchmark (ProFuzzBench) for stateful fuzzing of network protocols. The
benchmark includes a suite of representative open-source network servers for popular …

The security of network services and their protocols critically depends on minimizing their
attack surface. A single flaw in an implementation can suffice to compromise a service and …

Fuzzing is a well-known black-box approach to the security testing of applications. Fuzzing
has many advantages in terms of simplicity and effectiveness over more complex, expensive …

We describe a largely automated and systematic analysis of TLS implementations by what
we call 'protocol state fuzzing': we use state machine learning to infer state machines from …

Many protocol implementations are reactive systems, where the protocol process is in
continuous interaction with other processes and the environment. If a bug can be exposed …

Industrial networks are the cornerstone of modern industrial control systems. Performing
security checks of industrial communication processes helps detect unknown risks and …

In this paper, we attempt to improve industrial safety from the perspective of communication
security. We leverage the protocol fuzzing technology to reveal errors and vulnerabilities …

Recent years have witnessed an increasing number of protocols relying on UDP. Compared
to TCP, UDP offers performance advantages such as simplicity and lower latency. This has …