BugMiner: Mining the Hard-to-Reach Software Vulnerabilities through the Target-Oriented Hybrid Fuzzer

BugMiner: Mining the Hard-to-Reach Software Vulnerabilities through the Target-Oriented Hybrid Fuzzer

Greybox Fuzzing is the most reliable and essentially powerful technique for automated software testing. Notwithstanding, a majority of greybox fuzzers are not effective in directed fuzzing, for example, towards complicated patches, as well as towards suspicious and critical sites. To overcome these...

Full description

Bibliographic Details
Main Authors:	Fayozbek Rustamov, Juhwan Kim, Jihyeon Yu, Hyunwook Kim, Joobeom Yun
Format:	Article
Language:	English
Published:	MDPI AG 2021-12-01
Series:	Electronics
Subjects:	directed fuzzing hybrid fuzzing concolic execution software vulnerability natural language processing
Online Access:	https://www.mdpi.com/2079-9292/10/1/62

Similar Items

DeepDiver: Diving into Abysmal Depth of the Binary for Hunting Deeply Hidden Software Vulnerabilities
by: Fayozbek Rustamov, et al.
Published: (2020-04-01)

Exploratory Review of Hybrid Fuzzing for Automated Vulnerability Detection
by: Fayozbek Rustamov, et al.
Published: (2021-01-01)

SHFuzz: Selective Hybrid Fuzzing with Branch Scheduling Based on Binary Instrumentation
by: Xianya Mi, et al.
Published: (2020-08-01)

FIRM-COV: High-Coverage Greybox Fuzzing for IoT Firmware via Optimized Process Emulation
by: Juhwan Kim, et al.
Published: (2021-01-01)

PSOFuzzer: A Target-Oriented Software Vulnerability Detection Technology Based on Particle Swarm Optimization
by: Chen Chen, et al.
Published: (2021-01-01)

Fuzzing: a survey
by: Jun Li, et al.
Published: (2018-06-01)

Introducing probabilities within grey-box fuzzing
by: Sletmo, Patrik
Published: (2019)

A Novel Interactive Network Fuzzer for System Security Assessment
by: Jaime C. Acosta, et al.
Published: (2019-02-01)

GasFuzzer: Fuzzing Ethereum Smart Contract Binaries to Expose Gas-Oriented Exception Security Vulnerabilities
by: Imran Ashraf, et al.
Published: (2020-01-01)

To Force a Bug : Extending Hybrid Fuzzing
by: Näslund, Johan, et al.
Published: (2020)

ESRFuzzer: an enhanced fuzzing framework for physical SOHO router devices to discover multi-Type vulnerabilities
by: Yu Zhang, et al.
Published: (2021-07-01)

InsFuzz: Fuzzing Binaries With Location Sensitivity
by: Hanfang Zhang, et al.
Published: (2019-01-01)

From proof-of-concept to exploitable
by: Yan Wang, et al.
Published: (2019-03-01)

Using Fuzz Testing for Searching Software Vulnerabilities
by: Bogdan Leonidovich Kozirsky, et al.
Published: (2014-12-01)

LearnAFL: Greybox Fuzzing With Knowledge Enhancement
by: Tai Yue, et al.
Published: (2019-01-01)

FIRMCORN: Vulnerability-Oriented Fuzzing of IoT Firmware via Optimized Virtual Execution
by: Zhijie Gui, et al.
Published: (2020-01-01)

EQUALIZERS IN THE CATEGORIES FUZZ AND TOPFUZZ
by: Gh. Mirhosseinkhani, et al.
Published: (2020-01-01)

MooFuzz: Many-Objective Optimization Seed Schedule for Fuzzer
by: Xiaoqi Zhao, et al.
Published: (2021-01-01)

Detecting Server-Side Web Applications with Unrestricted File Upload Vulnerabilities
by: Huang, Jin
Published: (2021)

Optimizing IoT Web Fuzzing by Firmware Infomation Mining
by: Gao, Y., et al.
Published: (2022)

Program State Sensitive Parallel Fuzzing for Real World Software
by: Jiaxi Ye, et al.
Published: (2019-01-01)

Torpedo: A Fuzzing Framework for Discovering Adversarial Container Workloads
by: McDonough, Kenton Robert
Published: (2021)

Preventing Vulnerabilities and MitigatingAttacks on the MQTT Protocol
by: Yara, Ahmad
Published: (2020)

Finding Sands in the Eyes: Vulnerabilities Discovery in IoT With EUFuzzer on Human Machine Interface
by: Jiaping Men, et al.
Published: (2019-01-01)

MultiFuzz: A Coverage-Based Multiparty-Protocol Fuzzer for IoT Publish/Subscribe Protocols
by: Yingpei Zeng, et al.
Published: (2020-09-01)

FOCUSED AUTOMATED DISCOVERY OF TELEMETRY DEVICE CONSTRAINTS
by: Whittington, Austin J., et al.
Published: (2016)

Research on fuzzing method of stateful network protocol based on Q-learning algorithm
by: Jing Chen, et al.
Published: (2020-04-01)

<span style="font-variant: small-caps">ReFuzz</span>: A Remedy for Saturation in Coverage-Guided Fuzzing
by: Qian Lyu, et al.
Published: (2021-08-01)

Fuzzing Radio Resource Control messages in 5G and LTE systems : To test telecommunication systems with ASN.1 grammar rules based adaptive fuzzer
by: Potnuru, Srinath
Published: (2021)

CSEFuzz: Fuzz Testing Based on Symbolic Execution
by: Zhangwei Xie, et al.
Published: (2020-01-01)

MaxAFL: Maximizing Code Coverage with a Gradient-Based Optimization Technique
by: Youngjoon Kim, et al.
Published: (2021-12-01)

Black-Box Fuzzing of the REDHAWK Software Communications Architecture
by: Sayed, Shereef
Published: (2015)

Hardiness sensing for susceptibility using American Fuzzy Lop
by: Krishna Prakash R, et al.
Published: (2021-01-01)

A Framework for Software Security Testing and Evaluation
by: Dutta, Rahul Kumar
Published: (2015)

Phase Locked Loop and Modulo Games, The Dogma Loops; and “Finding Ibrida”
by: Stewart, Kenneth David
Published: (2016)

Detection of web vulnerabilities via model inference assisted evolutionary fuzzing
by: Duchene, Fabien
Published: (2014)

Symvex : A Symbolic Execution System for Machine Code
by: Rönn, Mattias
Published: (2016)

NeuFuzz: Efficient Fuzzing With Deep Neural Network
by: Yunchao Wang, et al.
Published: (2019-01-01)

Off-line Recognition of Unconstrained Handwritten Numerals Using Fuzzy Hough Transform
by: Mohammed Khedher, et al.
Published: (2009-09-01)

Studying the phenotypic, productive and technological properties of the staple in green cotton fluff mutations
by: Mohammed Sadeq, et al.
Published: (2007-09-01)