Model-based whitebox fuzzing for program binaries
@article{Pham2016ModelbasedWF, title={Model-based whitebox fuzzing for program binaries}, author={Van-Thuan Pham and Marcel B{\"o}hme and Abhik Roychoudhury}, journal={2016 31st IEEE/ACM International Conference on Automated Software Engineering (ASE)}, year={2016}, pages={543-553} }
Many real-world programs take highly structured and complex files as inputs. The automated testing of such programs is non-trivial. If the test does not adhere to a specific file format, the program returns a parser error. For symbolic execution-based whitebox fuzzing the corresponding error handling code becomes a significant time sink. Too much time is spent in the parser exploring too many paths leading to trivial parser errors. Naturally, the time is better spent exploring the functional… CONTINUE READING
Supplemental Presentations
Figures, Tables, and Topics from this paper
62 Citations
Skyfire: Data-Driven Seed Generation for Fuzzing
- Computer Science
- 2017 IEEE Symposium on Security and Privacy (SP)
- 2017
- 145
- PDF
pbSE: Phase-Based Symbolic Execution
- Computer Science
- 2017 47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN)
- 2017
- 1
Improving function coverage with munch: a hybrid fuzzing and directed symbolic execution approach
- Computer Science
- SAC
- 2018
- 20
- PDF
Guide Me to Exploit: Assisted ROP Exploit Generation for ActionScript Virtual Machine
- Computer Science
- ACSAC
- 2020
- PDF
Perspectives on search strategies in automated test input generation
- Computer Science
- Frontiers of Computer Science
- 2019
- Highly Influenced
References
SHOWING 1-5 OF 5 REFERENCES
Taint-based directed whitebox fuzzing
- Computer Science
- 2009 IEEE 31st International Conference on Software Engineering
- 2009
- 279
- Highly Influential
- PDF
TaintScope: A Checksum-Aware Directed Fuzzing Tool for Automatic Software Vulnerability Detection
- Computer Science
- 2010 IEEE Symposium on Security and Privacy
- 2010
- 273
- Highly Influential
- PDF
An empirical study of the reliability of UNIX utilities
- Computer Science
- CACM
- 1990
- 931
- Highly Influential
- PDF