NDFuzz: a non-intrusive coverage-guided fuzzing framework for virtualized network devices

Abstract Network function virtualization provides programmable in-network middlewares by leveraging technologies and commodity hardware has gained popularity among all mainstream network device manufacturers. Yet it is challenging to apply coverage-guided fuzzing, one of the state-of-the-art vulnerability discovery approaches, those virtualized devices, due inevitable integrity protection adopted devices. In this paper, we propose a fuzzing framework NDFuzz for devices with novel bypassing method, which able distinguish processes from hypervisors carefully designed non-intrusive page global directory inference technique. We implement atop two black-box fuzzers evaluate three representative protocols, SNMP , DHCP NTP on nine popular obtains an average 36% coverage improvement in comparison its counterparts. discovers 2 0-Day vulnerabilities 1 1-Day guidance while fuzzer can find only them. All discovered are confirmed corresponding vendors.