Авторы
Created byRuide Zhang
Attachments
События
Miller, Barton P., Louis Fredriksen, and Bryan So. "An empirical study of the reliability of UNIX utilities." Communications of the ACM 33.12 (1990): 32-44.Miller, Barton P., et al. Fuzz revisited: A re-examination of the reliability of UNIX utilities and services. Technical report, 1995.Aitel, Dave. "The advantages of block-based protocol analysis for security testing." Immunity Inc., February 105 (2002): 106.
APAR¨oning, J., Laakso, M., Takanen, A. & Kaksonen, R. (2002) Protos
- systematic approach to eliminate software vulnerabilitiesSparks, S., Embleton, S., Cunningham, R. & Zou, C. (2007) Automated vulnerability
analysis: Leveraging control flow for evolutionary input crafting, in Computer Security
Applications Conference, 2007. ACSAC 2007.Godefroid, P., Levin, M., Molnar, D. et al. (2008) Automated whitebox fuzz testing, in
Proceedings of the Network and Distributed System Security Symposium, CiteseerCadar, C., Dunbar, D. & Engler, D. (2008) Klee: Unassisted and automatic generation of
high-coverage tests for complex systems programs, in Proceedings of the 8th USENIX
conference on Operating systems design and implementationStephens, Nick, et al. "Driller: Augmenting Fuzzing Through Selective Symbolic Execution." NDSS. Vol. 16. 2016.Rawat, Sanjay, et al. "Vuzzer: Application-aware evolutionary fuzzing." Proceedings of the Network and Distributed System Security Symposium (NDSS). 2017.Периоды
Blackbox: randomized events, randomized messages, randomized structured messagesBlackbox: grammer based, mutative based on previous inputWhitebox: binary instumentation, symbolic executionGreybox: combination of static and dynamic tools
Comments