Fuzzing: a survey for roadmap
Fuzz testing (fuzzing) has witnessed its prosperity in detecting security flaws recently. It
generates a large number of test cases and monitors the executions for defects. Fuzzing has …
generates a large number of test cases and monitors the executions for defects. Fuzzing has …
[PDF][PDF] Fuzzing: Hack, art, and science
P Godefroid - Communications of the ACM, 2020 - dl.acm.org
Fuzzing: hack, art, and science Page 1 70 COMMUNICATIONS OF THE ACM | FEBRUARY
2020 | VOL. 63 | NO. 2 review articles FUZZING, OR FUZZ TESTING, is the process of finding …
2020 | VOL. 63 | NO. 2 review articles FUZZING, OR FUZZ TESTING, is the process of finding …
sfuzz: An efficient adaptive fuzzer for solidity smart contracts
Smart contracts are Turing-complete programs that execute on the infrastructure of the
blockchain, which often manage valuable digital assets. Solidity is one of the most popular …
blockchain, which often manage valuable digital assets. Solidity is one of the most popular …
The art, science, and engineering of fuzzing: A survey
Among the many software testing techniques available today, fuzzing has remained highly
popular due to its conceptual simplicity, its low barrier to deployment, and its vast amount of …
popular due to its conceptual simplicity, its low barrier to deployment, and its vast amount of …
{FIRM-AFL}:{High-Throughput} greybox fuzzing of {IoT} firmware via augmented process emulation
Cyber attacks against IoT devices are a severe threat. These attacks exploit software
vulnerabilities in IoT firmware. Fuzzing is an effective software testing technique for finding …
vulnerabilities in IoT firmware. Fuzzing is an effective software testing technique for finding …
{MOPT}: Optimized mutation scheduling for fuzzers
Mutation-based fuzzing is one of the most popular vulnerability discovery solutions. Its
performance of generating interesting test cases highly depends on the mutation scheduling …
performance of generating interesting test cases highly depends on the mutation scheduling …
Symbolic execution with {SymCC}: Don't interpret, compile!
S Poeplau, A Francillon - 29th USENIX Security Symposium (USENIX …, 2020 - usenix.org
A major impediment to practical symbolic execution is speed, especially when compared to
near-native speed solutions like fuzz testing. We propose a compilation-based approach to …
near-native speed solutions like fuzz testing. We propose a compilation-based approach to …
Learning to fuzz from symbolic execution with application to smart contracts
Fuzzing and symbolic execution are two complementary techniques for discovering software
vulnerabilities. Fuzzing is fast and scalable, but can be ineffective when it fails to randomly …
vulnerabilities. Fuzzing is fast and scalable, but can be ineffective when it fails to randomly …
Magma: A ground-truth fuzzing benchmark
High scalability and low running costs have made fuzz testing the de facto standard for
discovering software bugs. Fuzzing techniques are constantly being improved in a race to …
discovering software bugs. Fuzzing techniques are constantly being improved in a race to …
Beacon: Directed grey-box fuzzing with provable path pruning
Unlike coverage-based fuzzing that gives equal attention to every part of a code, directed
fuzzing aims to direct a fuzzer to a specific target in the code, eg, the code with potential …
fuzzing aims to direct a fuzzer to a specific target in the code, eg, the code with potential …