Proj THUDBFuzz Paper Reading: ParmeSan: Sanitizer-guided Greybox Fuzzing
Github
https://github.com/vusec/parmesan
Abstract
背景: code coverage overapporximate bug coverage,这可能导致non-trivial time-to-exposure(TTE) of bugs,也即发现bug的时间会很长。
已有方法:directed fuzzing,又会under approximate bug coverage.
本文:ParmeSan
方法:sanitizier guided fuzzing
目的:减少TTE
Assumption: 可以利用现有的sanitizer放入的probes来识别interesting code blocks,指引fuzzing
实验:与coverage-based fuzzer(Angora)和directed fuzzer都做了比对
1. Intro
Q: