Fuzz testing (fuzzing) has witnessed its prosperity in detecting security flaws recently. It
generates a large number of test cases and monitors the executions for defects. Fuzzing has …

Coverage-guided fuzzing has achieved great success in finding software vulnerabilities.
Existing coverage-guided fuzzers generally favor test cases that hit new code, and discard …

Greybox fuzzing has become one of the most effective vulnerability discovery techniques.
However, greybox fuzzing techniques cannot be directly applied to applications in IoT …

JavaScript engines have been shown prone to security vulnerabilities, which can lead to
serious consequences due to their popularity. Fuzzing is an effective testing technique to …

Software model checking as well as runtime verification are verification techniques which
are widely used for checking temporal properties of software systems. Even though they are …

The energy allocation strategy is one of the most popular techniques in fuzzing to improve
code coverage and vulnerability discovery. The core intuition is that fuzzers should allocate …

Coverage-guided fuzzing is one of the most effective approaches for discovering software
defects and vulnerabilities. It executes all mutated tests from seed inputs to expose coverage …

Directed grey-box fuzzing (DGF) is a security testing technique that aims to steer the fuzzer
towards predefined target sites in the program. To gain directedness, DGF prioritizes the …

Search-based software testing (SBST) generates tests using search algorithms guided by
measurements gauging how far a test case is away from exercising a coverage goal. The …

Termination is a crucial program property. Non-termination bugs can be subtle to detect and
may remain hidden for long before they take effect. Many real-world programs still suffer …