The art, science, and engineering of fuzzing: A survey
Among the many software testing techniques available today, fuzzing has remained highly
popular due to its conceptual simplicity, its low barrier to deployment, and its vast amount of …
popular due to its conceptual simplicity, its low barrier to deployment, and its vast amount of …
[PDF][PDF] IoTFuzzer: Discovering Memory Corruptions in IoT Through App-based Fuzzing.
With more IoT devices entering the consumer market, it becomes imperative to detect their
security vulnerabilities before an attacker does. Existing binary analysis based approaches …
security vulnerabilities before an attacker does. Existing binary analysis based approaches …
Unleashing mayhem on binary code
In this paper we present Mayhem, a new system for automatically finding exploitable bugs in
binary (ie, executable) programs. Every bug reported by Mayhem is accompanied by a …
binary (ie, executable) programs. Every bug reported by Mayhem is accompanied by a …
[PDF][PDF] Intellidroid: a targeted input generator for the dynamic analysis of android malware.
While dynamic malware analysis methods generally provide better precision than purely
static methods, they have the key drawback that they can only detect malicious behavior if it …
static methods, they have the key drawback that they can only detect malicious behavior if it …
Flexible and fine-grained mandatory access control on android for diverse security and privacy policies
In this paper we tackle the challenge of providing a generic security architecture for the
Android OS that can serve as a flexible and effective ecosystem to instantiate different …
Android OS that can serve as a flexible and effective ecosystem to instantiate different …
Undangle: early detection of dangling pointers in use-after-free and double-free vulnerabilities
Use-after-free vulnerabilities are rapidly growing in popularity, especially for exploiting web
browsers. Use-after-free (and double-free) vulnerabilities are caused by a program …
browsers. Use-after-free (and double-free) vulnerabilities are caused by a program …
{BinSim}: Trace-based semantic binary diffing via system call sliced segment equivalence checking
Detecting differences between two binary executables (binary diffing), first derived from
patch analysis, have been widely employed in various software security analysis tasks, such …
patch analysis, have been widely employed in various software security analysis tasks, such …
An inside look into the practice of malware analysis
Malware analysis aims to understand how malicious software carries out actions necessary
for a successful attack and identify the possible impacts of the attack. While there has been …
for a successful attack and identify the possible impacts of the attack. While there has been …
Dismantling megamos crypto: Wirelessly lockpicking a vehicle immobilizer
The Megamos Crypto transponder is used in one of the most widely deployed electronic
vehicle immobilizers. It is used among others in most Audi, Fiat, Honda, Volkswagen and …
vehicle immobilizers. It is used among others in most Audi, Fiat, Honda, Volkswagen and …
Cryptographic function detection in obfuscated binaries via bit-precise symbolic loop mapping
Cryptographic functions have been commonly abused by malware developers to hide
malicious behaviors, disguise destructive payloads, and bypass network-based firewalls …
malicious behaviors, disguise destructive payloads, and bypass network-based firewalls …