Sok: Prudent evaluation practices for fuzzing
Fuzzing has proven to be a highly effective approach to uncover software bugs over the past
decade. After AFL popularized the groundbreaking concept of lightweight coverage …
decade. After AFL popularized the groundbreaking concept of lightweight coverage …
From One Thousand Pages of Specification to Unveiling Hidden Bugs: Large Language Model Assisted Fuzzing of Matter {IoT} Devices
Matter is an IoT connectivity standard backed by over two hundred companies. Since the
release of its specification in October 2022, numerous IoT devices have become Matter …
release of its specification in October 2022, numerous IoT devices have become Matter …
A Friend's Eye is A Good Mirror: Synthesizing {MCU} Peripheral Models from Peripheral Drivers
The extensive integration of embedded devices within the Internet of Things (IoT) has given
rise to significant security concerns. Various initiatives have been undertaken to bolster the …
rise to significant security concerns. Various initiatives have been undertaken to bolster the …
[PDF][PDF] Forming Faster Firmware Fuzzers.
A recent trend for assessing the security of an embedded system's firmware is rehosting, the
art of running the firmware in a virtualized environment, rather than on the original hardware …
art of running the firmware in a virtualized environment, rather than on the original hardware …
{SHiFT}: Semi-hosted Fuzz Testing for Embedded Applications
Modern microcontrollers (MCU) s are ubiquitous on critical embedded applications in the IoT
era. Therefore, securing MCU firmware is fundamental. To analyze MCU firmware security …
era. Therefore, securing MCU firmware is fundamental. To analyze MCU firmware security …
No more companion apps hacking but one dongle: Hub-based blackbox fuzzing of iot firmware
Given the massive difficulty in emulating IoT firmware, blackbox fuzzing of IoT devices for
vulnerability discovery has become an attractive option. However, existing blackbox IoT …
vulnerability discovery has become an attractive option. However, existing blackbox IoT …
{MultiFuzz}: A {Multi-Stream} Fuzzer For Testing Monolithic Firmware
Rapid embedded device proliferation is creating new targets and opportunities for
adversaries. However, the complex interactions between firmware and hardware pose …
adversaries. However, the complex interactions between firmware and hardware pose …
{CO3}: Concolic Co-execution for Firmware
Firmware running on resource-constrained embedded microcontrollers (MCUs) is critical in
this IoT era, yet their security is under-analyzed. At the same time, concolic execution has …
this IoT era, yet their security is under-analyzed. At the same time, concolic execution has …
[HTML][HTML] IoT Firmware Emulation and Its Security Application in Fuzzing: A Critical Revisit
As IoT devices with microcontroller (MCU)-based firmware become more common in our
lives, memory corruption vulnerabilities in their firmware are increasingly targeted by …
lives, memory corruption vulnerabilities in their firmware are increasingly targeted by …
Ember-IO: effective firmware fuzzing with model-free memory mapped IO
G Farrelly, M Chesser, DC Ranasinghe - Proceedings of the 2023 ACM …, 2023 - dl.acm.org
Exponential growth in embedded systems is driving the research imperative to develop
fuzzers to automate firmware testing to uncover software bugs and security vulnerabilities …
fuzzers to automate firmware testing to uncover software bugs and security vulnerabilities …