Coverage-Based Greybox Fuzzing as Markov Chain

@article{Bx00F6hme2019CoverageBasedGF,
  title={Coverage-Based Greybox Fuzzing as Markov Chain},
  author={Marcel Bx00F6hme and Van-Thuan Pham and Abhik Roychoudhury},
  journal={IEEE Transactions on Software Engineering},
  year={2019},
  volume={45},
  pages={489-506}
}
  • Marcel Böhme, Van-Thuan Pham, Abhik Roychoudhury
  • Published 2019
  • Computer Science
  • IEEE Transactions on Software Engineering
  • Coverage-based Greybox Fuzzing (CGF) is a random testing approach that requires no program analysis. A new test is generated by slightly mutating a seed input. If the test exercises a new and interesting path, it is added to the set of seeds; otherwise, it is discarded. We observe that most tests exercise the same few “high-frequency” paths and develop strategies to explore significantly more paths with the same number of tests by gravitating towards low-frequency paths. We explain the… CONTINUE READING
    231 Citations
    FairFuzz: A Targeted Mutation Strategy for Increasing Greybox Fuzz Testing Coverage
    • Caroline Lemieux, K. Sen
    • Computer Science
    • 2018 33rd IEEE/ACM International Conference on Automated Software Engineering (ASE)
    • 2018
    • 111
    • PDF
    Sequence Coverage Directed Greybox Fuzzing
    • 5
    • PDF
    Fitness Guided Vulnerability Detection with Greybox Fuzzing
    • PDF
    Targeted Greybox Fuzzing with Static Lookahead Analysis
    • 10
    • Highly Influenced
    • PDF
    LearnAFL: Greybox Fuzzing With Knowledge Enhancement
    • 6
    • Highly Influenced
    • PDF
    SoK: The Progress, Challenges, and Perspectives of Directed Greybox Fuzzing
    • PDF
    Directed Greybox Fuzzing
    • 226
    • PDF
    Improving the Effectiveness of Grey-box Fuzzing By Extracting Program Information
    • Highly Influenced
    Steelix: program-state based binary fuzzing
    • 134
    • PDF
    Superion: Grammar-Aware Greybox Fuzzing
    • 47
    • PDF

    References

    SHOWING 1-3 OF 3 REFERENCES
    Driller: Augmenting Fuzzing Through Selective Symbolic Execution
    • 492
    • Highly Influential
    • PDF
    KLEE: Unassisted and Automatic Generation of High-Coverage Tests for Complex Systems Programs
    • 2,515
    • Highly Influential
    • PDF
    GNU Coreutils
    • https://www.gnu.org/software/ coreutils/coreutils.html, accessed: 2017-06-13.
    • 2017