Filters








3 Hits in 1.5 sec

Map2Check: Using Symbolic Execution and Fuzzing [chapter]

Herbert Rocha, Rafael Menezes, Lucas C. Cordeiro, Raimundo Barreto
<span title="">2020</span> <i title="Springer International Publishing"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/2w3awgokqne6te4nvlofavy5a4" style="color: black;">Lecture Notes in Computer Science</a> </i> &nbsp;
Map2Check is a software verification tool that combines fuzzing, symbolic execution, and inductive invariants.  ...  For SV-COMP 2020, we extended Map2Check to exploit an iterative deepening approach using LibFuzzer and Klee to check for safety properties.  ...  Using Symbolic Execution and Fuzzing  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1007/978-3-030-45237-7_29">doi:10.1007/978-3-030-45237-7_29</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/fle5mqsfyraofpyme4cxncjihy">fatcat:fle5mqsfyraofpyme4cxncjihy</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20200510113250/https://link.springer.com/content/pdf/10.1007%2F978-3-030-45237-7_29.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/22/1d/221dfefeecbdf6105339c195e05fc21d56d97756.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1007/978-3-030-45237-7_29"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> springer.com </button> </a>

FuSeBMC: A White-Box Fuzzer for Finding Security Vulnerabilities in C Programs (Competition Contribution) [chapter]

Kaled M. Alshmrany, Rafael S. Menezes, Mikhail R. Gadelha, Lucas C. Cordeiro
<span title="">2021</span> <i title="Springer International Publishing"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/2w3awgokqne6te4nvlofavy5a4" style="color: black;">Lecture Notes in Computer Science</a> </i> &nbsp;
AbstractWe describe and evaluate a novel white-box fuzzer for C programs named , which combines fuzzing and symbolic execution, and applies Bounded Model Checking (BMC) to find security vulnerabilities  ...  in C programs. explores and analyzes C programs (1) to find execution paths that lead to property violations and (2) to incrementally inject labels to guide the fuzzer and the BMC engine to produce test-cases  ...  FuSeBMC builds on top of clang [1] to instrument the C program, uses Map2check [8] as a fuzzing engine, and ESBMC (Efficient SMT-based Bounded Model Checker) [4, 5] as BMC and symbolic execution  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1007/978-3-030-71500-7_19">doi:10.1007/978-3-030-71500-7_19</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/c2vukgeqmzhqth4ygwgyuoilzi">fatcat:c2vukgeqmzhqth4ygwgyuoilzi</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20210717225319/https://link.springer.com/content/pdf/10.1007%2F978-3-030-71500-7_19.pdf?error=cookies_not_supported&amp;code=f88cd757-9ddc-4c5d-b9ed-2d12abfe410c" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/67/4d/674d20676585fa26a48e74d8436084a2d8993f7b.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1007/978-3-030-71500-7_19"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="unlock alternate icon" style="background-color: #fb971f;"></i> springer.com </button> </a>

Exploratory Review of Hybrid Fuzzing for Automated Vulnerability Detection

Fayozbek Rustamov, Juhwan Kim, Jihyeon Yu, Joobeom Yun
<span title="">2021</span> <i title="Institute of Electrical and Electronics Engineers (IEEE)"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/q7qi7j4ckfac7ehf3mjbso4hne" style="color: black;">IEEE Access</a> </i> &nbsp;
Similarly, symbolic execution has gained the most attention as an efficient testing tool for producing smart test-inputs and discovering hard-to-reach bugs using search-based heuristics and compositional  ...  The combination of fuzzing and symbolic execution makes software testing more efficient by mitigating the limitations in each other.  ...  Similar to the LibKluzzer, another CGHF known as Map2Check also uses LibFuzzer and KLEE.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/access.2021.3114202">doi:10.1109/access.2021.3114202</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/6yvqxkcqcvg5xl4g2bjf6ndsue">fatcat:6yvqxkcqcvg5xl4g2bjf6ndsue</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20210929221757/https://ieeexplore.ieee.org/ielx7/6287639/9312710/09541397.pdf?tp=&amp;arnumber=9541397&amp;isnumber=9312710&amp;ref=" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/a9/97/a9970f6392bd50c986aece522fa2ee095d8d055d.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/access.2021.3114202"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="unlock alternate icon" style="background-color: #fb971f;"></i> ieee.com </button> </a>