VUzzer: Application-aware Evolutionary Fuzzing.
作者: Sanjay Rawat , Vivek Jain , Ashish Kumar , Lucian Cojocar , Cristiano Giuffrida
关键词:
摘要: See, stats, and : https / www . researchgate net publication 311886374 VUzzer Application - aware Conference DOI 10 14722 ndss 2017 23404 CITATIONS 0 READS 17 6 , including Some Systems Sanjay Vrije Amsterdam Netherlands 38 SEE Ashish International 1 Cristiano VU 51 Herbert 163 836 All The text letting Abstract—Fuzzing is an effective software testing technique to find bugs Given the size complexity of real world applications modern fuzzers tend be either scalable but not in exploring that lie deeper execution or capable penetrating application In this paper we present evolutionary fuzzing strategy does require any prior knowledge input format order maximize coverage explore paths leverage control data flow features based on static dynamic analysis infer fundamental prop erties This enables much faster generation interesting inputs compared agnostic approach We implement our evaluate it three different datasets DARPA Grand Challenge binaries (CGC) a set (binary parsers) recently released LAVA dataset On all these yields significantly better results than state art by quickly finding several existing new
ndss-symposium.org
core.ac.uk
narcis.nl
columbia.edu 参考文章(18)
Alexandre Rebert, David Brumley, Thanassis Avgerinos, Gustavo Grieco, Sang Kil Cha, Jonathan Foote, David Warren, Optimizing seed selection for fuzzing usenix security symposium. pp. 861- 875 ,(2014)
David Molnar, David A. Wagner, Xue Cong Li, Dynamic test generation to find integer bugs in x86 binary linux programs usenix security symposium. pp. 67- 82 ,(2009)
Sang Kil Cha, Maverick Woo, David Brumley, Program-Adaptive Mutational Fuzzing 2015 IEEE Symposium on Security and Privacy. pp. 725- 741 ,(2015) , 10.1109/SP.2015.50
Tielei Wang, Tao Wei, Guofei Gu, Wei Zou, TaintScope: A Checksum-Aware Directed Fuzzing Tool for Automatic Software Vulnerability Detection ieee symposium on security and privacy. pp. 497- 512 ,(2010) , 10.1109/SP.2010.37
Barton P. Miller, Louis Fredriksen, Bryan So, An empirical study of the reliability of UNIX utilities Communications of The ACM. ,vol. 33, pp. 32- 44 ,(1990) , 10.1145/96267.96279
Matthias Neugschwandtner, Paolo Milani Comparetti, Istvan Haller, Herbert Bos, The BORG: Nanoprobing Binaries for Buffer Overreads conference on data and application security and privacy. pp. 87- 97 ,(2015) , 10.1145/2699026.2699098
Xiaoyin Wang, Lingming Zhang, Philip Tanofsky, Experience report: how is dynamic symbolic execution different from manual testing? a study on KLEE international symposium on software testing and analysis. pp. 199- 210 ,(2015) , 10.1145/2771783.2771818
Paul Piwowarski, A nesting level complexity measure Sigplan Notices. ,vol. 17, pp. 44- 50 ,(1982) , 10.1145/947955.947960
Ulf Kargén, Nahid Shahmehri, Turning programs against each other: high coverage fuzz-testing using binary-code mutation and dynamic slicing foundations of software engineering. pp. 782- 792 ,(2015) , 10.1145/2786805.2786844
Timo Mantere, Jarmo T. Alander, Evolutionary software engineering, a review soft computing. ,vol. 5, pp. 315- 331 ,(2005) , 10.1016/J.ASOC.2004.08.004