Coverage-Based Greybox Fuzzing as Markov Chain

@article{Bx00F6hme2019CoverageBasedGF,
  title={Coverage-Based Greybox Fuzzing as Markov Chain},
  author={Marcel Bx00F6hme and Van-Thuan Pham and Abhik Roychoudhury},
  journal={IEEE Transactions on Software Engineering},
  year={2019},
  volume={45},
  pages={489-506}
}
Coverage-based Greybox Fuzzing (CGF) is a random testing approach that requires no program analysis. A new test is generated by slightly mutating a seed input. If the test exercises a new and interesting path, it is added to the set of seeds; otherwise, it is discarded. We observe that most tests exercise the same few “high-frequency” paths and develop strategies to explore significantly more paths with the same number of tests by gravitating towards low-frequency paths. We explain the… Expand
237 Citations
FairFuzz: A Targeted Mutation Strategy for Increasing Greybox Fuzz Testing Coverage
  • 113
  • PDF
Sequence Coverage Directed Greybox Fuzzing
  • 5
  • PDF
Fitness Guided Vulnerability Detection with Greybox Fuzzing
  • PDF
Targeted Greybox Fuzzing with Static Lookahead Analysis
  • 9
  • Highly Influenced
  • PDF
LearnAFL: Greybox Fuzzing With Knowledge Enhancement
  • 7
  • Highly Influenced
  • PDF
SoK: The Progress, Challenges, and Perspectives of Directed Greybox Fuzzing
  • PDF
Directed Greybox Fuzzing
  • 229
  • PDF
Improving the Effectiveness of Grey-box Fuzzing By Extracting Program Information
  • Highly Influenced
Superion: Grammar-Aware Greybox Fuzzing
  • 50
  • PDF
...
1
2
3
4
5
...

References

SHOWING 1-3 OF 3 REFERENCES
Driller: Augmenting Fuzzing Through Selective Symbolic Execution
  • 495
  • Highly Influential
  • PDF
KLEE: Unassisted and Automatic Generation of High-Coverage Tests for Complex Systems Programs
  • 2,539
  • Highly Influential
  • PDF
GNU Coreutils
  • https://www.gnu.org/software/ coreutils/coreutils.html, accessed: 2017-06-13.
  • 2017