摘要:
Abstract P1: 背景: 目前fuzzing难以解决一些条件,比如需要复杂状态自动机的 P2: 提出IJON-可以使用人工注解来辅助fuzzer工作(allows a more systematic exploration of the program's behavior based on 阅读全文
摘要:
https://alibabatech.medium.com/gcc-vs-clang-llvm-an-in-depth-comparison-of-c-c-compilers-899ede2be378 Background VC, GCC和Clang/LLVM VC主要为Windows平台设计,G 阅读全文
摘要:
DDL 2021.4.16 Research Abstract 2021.4.23 Full Paper 基本信息 网址: https://conf.researchr.org/track/ase-2021/ase-2021-papers Research Papers要求 需要是在软件开发自动化领 阅读全文
摘要:
2. Systemization, taxonomy and test programs fuzzing目前包含很多方面的东西,如: dynamic symbolic execution grammar-based test case generation persmission testing b 阅读全文
摘要:
1. Intro Why machine learning tech can be used for fuzzing? Which steps in the fuzzing have used machine learning tech? Which machine learning algo ha 阅读全文
摘要:
2 Overview of Fuzzing Generation-based fuzzer Peach, Sulley Evolutionary Fuzzers honggfuzz, AFL, libFuzzer Mutation-based fuzzers where to mutate what 阅读全文
摘要:
Grammar-based Peach SPIKE Sulley Model-based 一般总是试着生成最少数目的tests covering Whitebox Fuzzing SAGE, KLEE, S2E, Symbolic PathFinder Portfolio 并行fuzzers Spr 阅读全文
摘要:
## Abstract 背景: Coverage-based Greybox Fuzzing很有用,但是并非全部增长的coverage都和bug直接相关。 Directed Fuzzer将时间直接花费在到达程序的确定位置上,非常适宜于patch testing, bug reproduction, 阅读全文
摘要:
Abstract Fuzzing-1. symbolic execution 2. random input generation Intro Blockbox fuzzing mutational generational: Peach Greybox fuzzing: 需用到程序插桩 Sanit 阅读全文
摘要:
Abstract 目的: 尽量通过于一检查 工具: Skyfire 特色:使用现有的code samples学习概率性CFG,再用之生成分布很好的种子 实验: 将Skyfire生成的种子输入AFL中 对象: XSLT, XML引擎 效果: 能生成well-distributed inputs 极大增 阅读全文