Typestate-guided fuzzer for discovering use-after-free vulnerabilities

Typestate-guided fuzzer for discovering use-after-free vulnerabilities

Existing coverage-based fuzzers usually use the individual control flow graph (CFG) edge coverage to guide the fuzzing process, which has shown great potential in finding vulnerabilities. However, CFG edge coverage is not effective in discovering vulnerabilities such as use-after-free (UaF). This is...

Full description

Saved in:

Bibliographic Details
Main Authors:	WANG, Haijun, XIE, Xiaofei, LI, Yi, WEN, Cheng, LI, Yuekang, LIU, Yang, QIN, Shengchao, CHEN, Hongxu, SUI, Yulei
Format:	text
Language:	English
Published:	Institutional Knowledge at Singapore Management University 2020
Subjects:	Fuzzing Typestate-guided fuzzing Use-after-Free vulnerabilities OS and Networks Software Engineering
Online Access:	https://ink.library.smu.edu.sg/sis_research/7086 https://ink.library.smu.edu.sg/context/sis_research/article/8089/viewcontent/3377811.3380386__1_.pdf
Tags:	Add Tag No Tags, Be the first to tag this record!
Institution:	Singapore Management University
Language:	English

Similar Items

Cerebro: Context-aware adaptive fuzzing for effective vulnerability detection
by: LI, Yuekang, et al.
Published: (2019)

MemLock: Memory usage guided fuzzing
by: WEN, Cheng, et al.
Published: (2020)

SoFi: Reflection-augmented fuzzing for JavaScript engines
by: HE, Xiaoyu, et al.
Published: (2021)

Hawkeye: Towards a desired directed grey-box fuzzer
by: CHEN, Hongxu, et al.
Published: (2018)

sFuzz: An efficient adaptive fuzzer for solidity smart contracts
by: NGUYEN, Tai D., et al.
Published: (2020)

Hands-on fuzzing of open source project
by: Zhou, Yiqi
Published: (2024)

Deep learning for coverage-guided fuzzing: How far are we?
by: LI, Siqi, et al.
Published: (2022)

xFuzz: Machine learning guided cross-contract fuzzing
by: XUE, Yinxing, et al.
Published: (2024)

A comparative study of fuzzing tools on instrumental analysis
by: Huang, Xinyan
Published: (2024)

Probabilistic path prioritization for hybrid fuzzing
by: ZHAO, Lei, et al.
Published: (2022)

BehAVExplor: Behavior diversity guided testing for autonomous driving systems
by: CHENG, Mingfei, et al.
Published: (2023)

sFuzz2.0: Storage-access pattern guided smart contract fuzzing
by: WANG, Haoyu, et al.
Published: (2024)

SmartFuzz: An automated smart fuzzing approach for testing SmartThings apps
by: SHAR, Lwin Khin, et al.
Published: (2020)

Curiosity-driven testing for sequential decision-making process
by: HE, Junda, et al.
Published: (2024)

Learning-guided network fuzzing for testing cyber-physical system defences
by: CHEN, Yuqi, et al.
Published: (2020)

ObjSim: Efficient testing of cyber-physical systems
by: SUN, Jun, et al.
Published: (2020)

Locating vulnerabilities in binaries via memory layout recovering
by: WANG, Haijun, et al.
Published: (2019)

ENHANCING DIRECTED SEARCH IN BLACK-BOX, GREY-BOX AND WHITE-BOX FUZZ TESTING
by: PHAM VAN THUAN
Published: (2017)

Specification-based autonomous driving system testing
by: ZHOU, Yuan, et al.
Published: (2023)

Finding causally different tests for an industrial control system
by: POSKITT, Christopher M., et al.
Published: (2023)

Constructing cyber-physical system testing suites using active sensor fuzzing
by: ZHANG, Fan., et al.
Published: (2023)

Smart Greybox Fuzzing
by: Pham, Van-Thuan, et al.
Published: (2023)

Adversarial specification mining
by: KANG, Hong Jin, et al.
Published: (2021)

Active fuzzing for testing and securing cyber-physical systems
by: CHEN, Yuqi, et al.
Published: (2020)

LawBreaker: An approach for specifying traffic laws and fuzzing autonomous vehicles
by: SUN, Yang, et al.
Published: (2022)

Socialz: Multi-feature social fuzz testing
by: ZANARTU, Francisco, et al.
Published: (2023)

Demystifying performance regressions in string solvers
by: ZHANG, Yao, et al.
Published: (2023)

Techniques for identifying mobile platform vulnerabilities and detecting policy-violating applications
by: SU, Mon Kywe
Published: (2016)

Enhancing code vulnerability detection via vulnerability-preserving data augmentation
by: LIU, Shangqing, et al.
Published: (2024)

DeepHunter: A coverage-guided fuzz testing framework for deep neural networks
by: XIE, Xiaofei, et al.
Published: (2019)

Better pay attention whilst fuzzing
by: ZHU, Shunkai, et al.
Published: (2023)

Automatic vulnerability detection and repair
by: MA, Siqi
Published: (2018)

Finding real world software vulnerabilities using ChatGPT
by: Wong, Sean Chun Foh
Published: (2024)

Metabolic alterations and vulnerabilities in hepatocellular carcinoma
by: Tenen, Daniel G., et al.
Published: (2022)

Vulnerability analysis of EMAP: An efficient RFID mutual authentication protocol
by: LI, Tieyan, et al.
Published: (2007)

DiffChaser: Detecting disagreements for deep neural networks
by: XIE, Xiaofei, et al.
Published: (2019)

Decision-guided weighted automata extraction from recurrent neural networks
by: ZHANG, Xiyue, et al.
Published: (2021)

TzuYu: Learning stateful typestates
by: Xiao, H., et al.
Published: (2014)

TzuYu: Learning stateful typestates
by: XIAO, Hao, et al.
Published: (2013)

EXPLORING A TRANSDIAGNOSTIC COGNITIVE VULNERABILITY TO INTERNALIZING SYMPTOMS IN ADOLESCENTS
by: RUTH POH YI NING
Published: (2019)