TaintScope: A Checksum-Aware Directed Fuzzing Tool for Automatic Software Vulnerability Detection

@article{Wang2010TaintScopeAC,
  title={TaintScope: A Checksum-Aware Directed Fuzzing Tool for Automatic Software Vulnerability Detection},
  author={Tielei Wang and Tao Wei and G. Gu and W. Zou},
  journal={2010 IEEE Symposium on Security and Privacy},
  year={2010},
  pages={497-512}
}
  • Tielei Wang, Tao Wei, +1 author W. Zou
  • Published 2010
  • Computer Science
  • 2010 IEEE Symposium on Security and Privacy
    • Fuzz testing has proven successful in finding security vulnerabilities in large programs. However, traditional fuzz testing tools have a well-known common drawback: they are ineffective if most generated malformed inputs are rejected in the early stage of program running, especially when target programs employ checksum mechanisms to verify the integrity of inputs. In this paper, we present TaintScope, an automatic fuzzing system using dynamic taint analysis and symbolic execution techniques, to… CONTINUE READING
    View on IEEE
    faculty.cs.tamu.edu
    273 Citations
    Highly Influential Citations
    25
    Background Citations
    107
    Methods Citations
    88

    Supplemental Presentations

    Presentation Slides
    TaintScope: A Checksum-Aware Directed Fuzzing Tool for Automatic Software Vulnerability Detection
    Presentation One
    Presentation Two
    Presentation Three
    Explore Further
    Discover more papers related to the topics discussed in this paper
    273 Citations
    Citation Type

    Citation Type

    CAFA: A Checksum-Aware Fuzzing Assistant Tool for Coverage Improvement
    • 2
    • Highly Influenced
    • PDF
    T-Fuzz: Fuzzing by Program Transformation
    • 129
    • PDF
    WhirlingFuzzwork: a taint-analysis-based API in-memory fuzzing framework
    • 3
    CRAXfuzz: Target-Aware Symbolic Fuzz Testing
    • 1
    Statically-Directed Dynamic Taint Analysis ∗
    • 1
    RankFuzz: Fuzz Testing Based on Comprehensive Evaluation
    • Cheng Li, Qiang Wei, Q. Wang
    • Computer Science
    • 2012 Fourth International Conference on Multimedia Information Networking and Security
    • 2012
    • 1
    Effective Fuzzing Based on Dynamic Taint Analysis
    • 9
    adapting software testing techniques to enhance software security
    • PDF
    Impeding Fuzzing Audits of Binary Executables
    • PDF
    AntiFuzz: Impeding Fuzzing Audits of Binary Executables
    • 6
    • PDF

    References

    SHOWING 1-10 OF 55 REFERENCES
    Automated Whitebox Fuzz Testing
    • 1,083
    • PDF
    Impeding Malware Analysis Using Conditional Code Obfuscation
    • 227
    • PDF
    Penumbra: automatically identifying failure-relevant inputs using dynamic tainting
    • 60
    Dytan: a generic dynamic taint analysis framework
    • 465
    • PDF
    Taint-based directed whitebox fuzzing
    • 279
    • PDF
    Grammar-based whitebox fuzzing
    • 401
    • PDF
    Static Detection of Vulnerabilities in x86 Executables
    • 70
    • PDF
    Exploring Multiple Execution Paths for Malware Analysis
    • 537
    • PDF
    SNOOZE: Toward a Stateful NetwOrk prOtocol fuzZEr
    • 113
    • PDF
    IntScope: Automatically Detecting Integer Overflow Vulnerability in X86 Binary Using Symbolic Execution
    • 162
    • PDF