A comparative study of fuzzing tools on instrumental analysis
In the current times, the continuous evolution of technology and integration of technology into our daily lives is unavoidable. People’s reliance on technology has caused the complexity of software programs to increase continuously. Consequently, the detection, mitigation of software vulnerabilities...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Final Year Project |
| Language: | English |
| Published: |
Nanyang Technological University
2024
|
| Subjects: | |
| Online Access: | https://hdl.handle.net/10356/175213 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Nanyang Technological University |
| Language: | English |
| Summary: | In the current times, the continuous evolution of technology and integration of technology into our daily lives is unavoidable. People’s reliance on technology has caused the complexity of software programs to increase continuously. Consequently, the detection, mitigation of software vulnerabilities became a more prevalent issue due to technology’s indispensable role in society today. Due to the complexity of software programs these days, it is almost impossible to remove all vulnerabilities hence causing zero-day vulnerability to remain as a prevalent issue in the field of cybersecurity. This emphasises the importance of structured discovery of pre-existing vulnerabilities and patches against it before it can be exploited to reduce security issues to the minimum.
In this study, we will be performing fuzzing using LibFuzz and American fuzzy Lop Plus (ALF++). The input files will consist of binary files in Unifuzz seed bank and Proof-Of-Concept files submitted by other researchers. The paper will consist of a detailed explanation and process of each step taken in this research done through a period of 10 months on the Program Under Test with the seeds mentioned above. The efficiency of the chosen fuzzing tools will be compared using different metrics to identify the most effective fuzzing tool in the market. |
|---|