Nsfuzz: Towards efficient and state-aware network service fuzzing
As an essential component responsible for communication, network services are security
critical, thus, it is vital to find their vulnerabilities. Fuzzing is currently one of the most popular …
critical, thus, it is vital to find their vulnerabilities. Fuzzing is currently one of the most popular …
A systematic review of fuzzing
Fuzzing is an important technique in software and security testing that involves continuously
generating a large number of test cases against target programs to discover unexpected …
generating a large number of test cases against target programs to discover unexpected …
Bleem: Packet sequence oriented fuzzing for protocol implementations
Protocol implementations are essential components in network infrastructures. Flaws hidden
in the implementations can easily render devices vulnerable to adversaries. Therefore …
in the implementations can easily render devices vulnerable to adversaries. Therefore …
Tyr: Finding consensus failure bugs in blockchain system with behaviour divergent model
Blockchain is a decentralized distributed system on which a large number of financial
applications have been deployed. The consensus process in it plays an important role …
applications have been deployed. The consensus process in it plays an important role …
{TCP-Fuzz}: Detecting memory and semantic bugs in {TCP} stacks with fuzzing
TCP stacks provide reliable data transmission in network, and thus they should be correctly
implemented and well tested to ensure reliability and security. However, testing TCP stacks …
implemented and well tested to ensure reliability and security. However, testing TCP stacks …
A survey on fuzz testing technologies for industrial control protocols
The development of the industrial Internet of Things enables industrial control systems to
become inter-networked and inter-connected, making them intelligent with high productivity …
become inter-networked and inter-connected, making them intelligent with high productivity …
CLFuzz: Vulnerability detection of cryptographic algorithm implementation via semantic-aware fuzzing
Cryptography is a core component of many security applications, and flaws hidden in its
implementation will affect the functional integrity or, more severely, pose threats to data …
implementation will affect the functional integrity or, more severely, pose threats to data …
SNPSFuzzer: A fast greybox fuzzer for stateful network protocols using snapshots
Greybox fuzzing has been widely used in stateless programs and has achieved great
success. However, most state-of-the-art greybox fuzzers have slow speed and shallow state …
success. However, most state-of-the-art greybox fuzzers have slow speed and shallow state …
[PDF][PDF] LOKI: State-Aware Fuzzing Framework for the Implementation of Blockchain Consensus Protocols.
Blockchain consensus protocols are responsible for coordinating the nodes to make
agreements on the transaction results. Their implementation bugs, including memory-related …
agreements on the transaction results. Their implementation bugs, including memory-related …
Ics3fuzzer: A framework for discovering protocol implementation bugs in ics supervisory software by fuzzing
The supervisory software is widely used in industrial control systems (ICSs) to manage field
devices such as PLC controllers. Once compromised, it could be misused to control or …
devices such as PLC controllers. Once compromised, it could be misused to control or …