1 Hit in 2.8 sec

BackREST: A Model-Based Feedback-Driven Greybox Fuzzer for Web Applications [article]

François Gauthier
2021 arXiv   pre-print
This paper introduces BackREST, a fully automated, model-based, coverage- and taint-driven fuzzer that uses its feedback loops to find more critical vulnerabilities, faster (speedups between 7.4x and 25.9x  ...  To model the server-side of web applications, BackREST automatically infers REST specifications through directed state-aware crawling.  ...  CONCLUSION We presented BACKREST, the first fully automated modelbased, coverage-and taint-driven greybox fuzzer for web applications.  ... 
arXiv:2108.08455v1 fatcat:yrbikf2dsjgk7advmgcbkpdntq