TaintScope: A checksum-aware directed fuzzing tool for automatic software vulnerability detection
Fuzz testing has proven successful in finding security vulnerabilities in large programs.
However, traditional fuzz testing tools have a well-known common drawback: they are …
However, traditional fuzz testing tools have a well-known common drawback: they are …
Deepfuzzer: Accelerated deep greybox fuzzing
Fuzzing is one of the most effective vulnerability detection techniques, widely used in
practice. However, the performance of fuzzers may be limited by their inability to pass …
practice. However, the performance of fuzzers may be limited by their inability to pass …
Cyber vulnerability intelligence for internet of things binary
Internet of Things (IoT) integrates a variety of software (eg, autonomous vehicles and military
systems) in order to enable the advanced and intelligent services. These software increase …
systems) in order to enable the advanced and intelligent services. These software increase …
{USBFuzz}: A Framework for Fuzzing {USB} Drivers by Device Emulation
H Peng, M Payer - 29th USENIX Security Symposium (USENIX Security …, 2020 - usenix.org
The Universal Serial Bus (USB) connects external devices to a host. This interface exposes
the OS kernels and device drivers to attacks by malicious devices. Unfortunately, kernels …
the OS kernels and device drivers to attacks by malicious devices. Unfortunately, kernels …
[PDF][PDF] What You Corrupt Is Not What You Crash: Challenges in Fuzzing Embedded Devices.
As networked embedded systems are becoming more ubiquitous, their security is becoming
critical to our daily life. While manual or automated large scale analysis of those systems …
critical to our daily life. While manual or automated large scale analysis of those systems …
Neufuzz: Efficient fuzzing with deep neural network
Y Wang, Z Wu, Q Wei, Q Wang - IEEE Access, 2019 - ieeexplore.ieee.org
Coverage-guided graybox fuzzing is one of the most popular and effective techniques for
discovering vulnerabilities due to its nature of high speed and scalability. However, the …
discovering vulnerabilities due to its nature of high speed and scalability. However, the …
DEVFUZZ: automatic device model-guided device driver fuzzing
The security of device drivers is critical for the entire operating system's reliability. Yet, it
remains very challenging to validate if a device driver can properly handle potentially …
remains very challenging to validate if a device driver can properly handle potentially …
Nsfuzz: Towards efficient and state-aware network service fuzzing
As an essential component responsible for communication, network services are security
critical, thus, it is vital to find their vulnerabilities. Fuzzing is currently one of the most popular …
critical, thus, it is vital to find their vulnerabilities. Fuzzing is currently one of the most popular …
Libafl: A framework to build modular and reusable fuzzers
The release of AFL marked an important milestone in the area of software security testing,
revitalizing fuzzing as a major research topic and spurring a large number of research …
revitalizing fuzzing as a major research topic and spurring a large number of research …
[PDF][PDF] HFL: Hybrid Fuzzing on the Linux Kernel.
Hybrid fuzzing, combining symbolic execution and fuzzing, is a promising approach for
vulnerability discovery because each approach can complement the other. However, we …
vulnerability discovery because each approach can complement the other. However, we …