Fuzzing: a survey for roadmap
Fuzz testing (fuzzing) has witnessed its prosperity in detecting security flaws recently. It
generates a large number of test cases and monitors the executions for defects. Fuzzing has …
generates a large number of test cases and monitors the executions for defects. Fuzzing has …
Fuzzing vulnerability discovery techniques: Survey, challenges and future directions
C Beaman, M Redbourne, JD Mummery, S Hakak - Computers & Security, 2022 - Elsevier
Fuzzing is a powerful tool for vulnerability discovery in software, with much progress being
made in the field in recent years. There is limited literature available on the fuzzing …
made in the field in recent years. There is limited literature available on the fuzzing …
An Abstract Syntax Tree based static fuzzing mutation for vulnerability evolution analysis
W Zheng, P Deng, K Gui, X Wu - Information and Software Technology, 2023 - Elsevier
Context: Zero-day vulnerabilities are highly destructive and sudden. However, traditional
static and dynamic testing methods cannot efficiently detect them. Objective: In this paper, a …
static and dynamic testing methods cannot efficiently detect them. Objective: In this paper, a …
Memlock: Memory usage guided fuzzing
Uncontrolled memory consumption is a kind of critical software security weaknesses. It can
also become a security-critical vulnerability when attackers can take control of the input to …
also become a security-critical vulnerability when attackers can take control of the input to …
{MUZZ}: Thread-aware grey-box fuzzing for effective bug hunting in multithreaded programs
Grey-box fuzz testing has revealed thousands of vulnerabilities in real-world software owing
to its lightweight instrumentation, fast coverage feedback, and dynamic adjusting strategies …
to its lightweight instrumentation, fast coverage feedback, and dynamic adjusting strategies …
[PDF][PDF] Reinforcement learning-based hierarchical seed scheduling for greybox fuzzing
Coverage metrics play an essential role in greybox fuzzing. Recent work has shown that fine-
grained coverage metrics could allow a fuzzer to detect bugs that cannot be covered by …
grained coverage metrics could allow a fuzzer to detect bugs that cannot be covered by …
{MVP}: Detecting vulnerabilities using {Patch-Enhanced} vulnerability signatures
Recurring vulnerabilities widely exist and remain undetected in real-world systems, which
are often resulted from reused code base or shared code logic. However, the potentially …
are often resulted from reused code base or shared code logic. However, the potentially …
Oddfuzz: Discovering java deserialization vulnerabilities via structure-aware directed greybox fuzzing
Java deserialization vulnerability is a severe threat in practice. Researchers have proposed
static analysis solutions to locate candidate vulnerabilities and fuzzing solutions to generate …
static analysis solutions to locate candidate vulnerabilities and fuzzing solutions to generate …
Binary-level directed fuzzing for {use-after-free} vulnerabilities
Directed fuzzing focuses on automatically testing specific parts of the code by taking
advantage of additional information such as (partial) bug stack trace, patches or risky …
advantage of additional information such as (partial) bug stack trace, patches or risky …
[PDF][PDF] Context-sensitive and directional concurrency fuzzing for data-race detection
Fuzzing is popular for bug detection and vulnerability discovery nowadays. To adopt fuzzing
for concurrency problems like data races, several recent concurrency fuzzing approaches …
for concurrency problems like data races, several recent concurrency fuzzing approaches …