Fuzzing mobile applications to detect crashes
With the growing number of available android apps in the Google Play Store, it has become increasingly important for app developers to maintain app stability through automated black box testing, to ensure that both potential and existing app users are not lost to the competition due to frequent app...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Final Year Project |
| Language: | English |
| Published: |
2019
|
| Subjects: | |
| Online Access: | http://hdl.handle.net/10356/77035 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Nanyang Technological University |
| Language: | English |
| id |
sg-ntu-dr.10356-77035 |
|---|---|
| record_format |
dspace |
| spelling |
sg-ntu-dr.10356-770352023-03-03T20:28:11Z Fuzzing mobile applications to detect crashes Wee, Aaron Soon Lee Liu Yang School of Computer Science and Engineering DRNTU::Engineering::Computer science and engineering::Software::Programming languages With the growing number of available android apps in the Google Play Store, it has become increasingly important for app developers to maintain app stability through automated black box testing, to ensure that both potential and existing app users are not lost to the competition due to frequent app crashes. While most app developers use sequential testing to automate testing of a specific test path, more bugs can be found with the addition of fuzz testing.This report introduces an automated black box android fuzzing tool named DRMFuzzer that operates in two phases. The first phase involves fuzzing a target app with user interface events using model-based approach enhanced by dynamic weighted random exploration strategy to find crashes. The second phase commences after fuzzing completes which consists of the generation of repeatable test scripts, activity screenshots and a detailed console output to facilitate crash analysis and bug reproduction. DRMFuzzer was evaluated on 10 android apps and when compared to Monkey showed that it was able to detect more unique crashes in 8 out of 10 of the apps tested and was able to reproduce 92% of the crashes found after the initial fuzzing. Bachelor of Engineering (Computer Engineering) 2019-05-02T08:59:04Z 2019-05-02T08:59:04Z 2019 Final Year Project (FYP) http://hdl.handle.net/10356/77035 en Nanyang Technological University 51 p. application/pdf |
| institution |
Nanyang Technological University |
| building |
NTU Library |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
NTU Library |
| collection |
DR-NTU |
| language |
English |
| topic |
DRNTU::Engineering::Computer science and engineering::Software::Programming languages |
| spellingShingle |
DRNTU::Engineering::Computer science and engineering::Software::Programming languages Wee, Aaron Soon Lee Fuzzing mobile applications to detect crashes |
| description |
With the growing number of available android apps in the Google Play Store, it has become increasingly important for app developers to maintain app stability through automated black box testing, to ensure that both potential and existing app users are not lost to the competition due to frequent app crashes. While most app developers use sequential testing to automate testing of a specific test path, more bugs can be found with the addition of fuzz testing.This report introduces an automated black box android fuzzing tool named DRMFuzzer that operates in two phases. The first phase involves fuzzing a target app with user interface events using model-based approach enhanced by dynamic weighted random exploration strategy to find crashes. The second phase commences after fuzzing completes which consists of the generation of repeatable test scripts, activity screenshots and a detailed console output to facilitate crash analysis and bug reproduction. DRMFuzzer was evaluated on 10 android apps and when compared to Monkey showed that it was able to detect more unique crashes in 8 out of 10 of the apps tested and was able to reproduce 92% of the crashes found after the initial fuzzing. |
| author2 |
Liu Yang |
| author_facet |
Liu Yang Wee, Aaron Soon Lee |
| format |
Final Year Project |
| author |
Wee, Aaron Soon Lee |
| author_sort |
Wee, Aaron Soon Lee |
| title |
Fuzzing mobile applications to detect crashes |
| title_short |
Fuzzing mobile applications to detect crashes |
| title_full |
Fuzzing mobile applications to detect crashes |
| title_fullStr |
Fuzzing mobile applications to detect crashes |
| title_full_unstemmed |
Fuzzing mobile applications to detect crashes |
| title_sort |
fuzzing mobile applications to detect crashes |
| publishDate |
2019 |
| url |
http://hdl.handle.net/10356/77035 |
| _version_ |
1759854196871397376 |