Coverage-Based Greybox Fuzzing as Markov Chain
@article{Bx00F6hme2019CoverageBasedGF, title={Coverage-Based Greybox Fuzzing as Markov Chain}, author={Marcel Bx00F6hme and Van-Thuan Pham and Abhik Roychoudhury}, journal={IEEE Transactions on Software Engineering}, year={2019}, volume={45}, pages={489-506} }
Coverage-based Greybox Fuzzing (CGF) is a random testing approach that requires no program analysis. A new test is generated by slightly mutating a seed input. If the test exercises a new and interesting path, it is added to the set of seeds; otherwise, it is discarded. We observe that most tests exercise the same few “high-frequency” paths and develop strategies to explore significantly more paths with the same number of tests by gravitating towards low-frequency paths. We explain the… CONTINUE READING
Supplemental Content
Figures, Tables, and Topics from this paper
231 Citations
FairFuzz: A Targeted Mutation Strategy for Increasing Greybox Fuzz Testing Coverage
- Computer Science
- 2018 33rd IEEE/ACM International Conference on Automated Software Engineering (ASE)
- 2018
- 111
- PDF
Sequence Coverage Directed Greybox Fuzzing
- Computer Science
- 2019 IEEE/ACM 27th International Conference on Program Comprehension (ICPC)
- 2019
- 5
- PDF
Targeted Greybox Fuzzing with Static Lookahead Analysis
- Computer Science
- 2020 IEEE/ACM 42nd International Conference on Software Engineering (ICSE)
- 2020
- 10
- Highly Influenced
- PDF
LearnAFL: Greybox Fuzzing With Knowledge Enhancement
- Computer Science
- IEEE Access
- 2019
- 6
- Highly Influenced
- PDF
SoK: The Progress, Challenges, and Perspectives of Directed Greybox Fuzzing
- Computer Science
- ArXiv
- 2020
- PDF
Improving the Effectiveness of Grey-box Fuzzing By Extracting Program Information
- Computer Science
- 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)
- 2020
- Highly Influenced
Superion: Grammar-Aware Greybox Fuzzing
- Computer Science
- 2019 IEEE/ACM 41st International Conference on Software Engineering (ICSE)
- 2019
- 47
- PDF
References
SHOWING 1-3 OF 3 REFERENCES
Driller: Augmenting Fuzzing Through Selective Symbolic Execution
- Computer Science
- NDSS
- 2016
- 492
- Highly Influential
- PDF
KLEE: Unassisted and Automatic Generation of High-Coverage Tests for Complex Systems Programs
- Computer Science
- OSDI
- 2008
- 2,515
- Highly Influential
- PDF
GNU Coreutils
- https://www.gnu.org/software/ coreutils/coreutils.html, accessed: 2017-06-13.
- 2017