NSFuzz : Towards Efficient and State-Aware Network Service Fuzzing

نویسندگان

چکیده

As an essential component responsible for communication, network services are security-critical, and it is vital to find vulnerabilities in them. Fuzzing currently one of the most popular software vulnerability discovery techniques, widely adopted due its high efficiency low false positives. However, existing coverage-guided fuzzers mainly aim at stateless local applications, leaving stateful underexplored. Recently, some targeting have been proposed but certain limitations, e.g., insufficient or inaccurate state representation testing efficiency. In this paper, we propose a new fuzzing solution NSFuzz services. Specifically, studied typical implementations service programs figured out how they represent states interact with clients. Accordingly (1) program variable-based scheme (2) efficient interaction synchronization mechanism improve We implemented prototype NSFuzz, which uses static analysis annotation APIs identify points variables within services, then achieves fast I/O accurate tracing carry state-aware via lightweight compile-time instrumentation. The evaluation results show that compared other fuzzers, including AFL net S tate AFL, our could infer more model during throughput by up 200x. Besides, code coverage 25% trigger crashes less time. Furthermore, performed campaign bugs latest version target 8 zero-day found NSFuzz.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

VUzzer: Application-aware Evolutionary Fuzzing

Fuzzing is an effective software testing technique to find bugs. Given the size and complexity of real-world applications, modern fuzzers tend to be either scalable, but not effective in exploring bugs that lie deeper in the execution, or capable of penetrating deeper in the application, but not scalable. In this paper, we present an application-aware evolutionary fuzzing strategy that does not...

متن کامل

Service-Fingerprinting mittels Fuzzing

Für die Durchführung effektiver Penetrationstests ist die Identifizierung von Diensten (Services) und Applikationen auf den Zielsystemen, das sogenannte Service-Fingerprinting, von zentraler Bedeutung. Ziel dieses Beitrags ist es, mögliche Verbesserungspotentiale bestehender Fingerprinting-Tools zu beleuchten. Dies soll durch Einsatz von Mutation-Based Fuzzing zwecks einfacher und automatischer...

متن کامل

Towards Context-Aware Technical Service

Context-aware systems have long found application in everyday use cases, assisting users with their daily lives. Technical service covers any tasks concerning the maintenance, diagnosis, and repair of industrial machinery. It is a more specific domain that would also benefit from the introduction of context-aware systems. This domain requires the filtering and consumption of a vast amount of in...

متن کامل

Efficient QoS-aware Service Composition

Web service composition requests are usually combined with end-toend QoS requirements, which are specified in terms of non-functional properties (e.g. response time, throughput and price). The goal of QoS-aware service composition is to find the best combination of services such that their aggregated QoS values meet these end-to-end requirements. Local selection techniques are very efficient bu...

متن کامل

Automatic Network-Aware Service Access

Although advances in wireless networks and the increasing availability of mobile end devices raise the prospect of ubiquitous access to network-based services, such access must cope with an inherent mismatch between the high bandwidth, relatively static connection requirements of many services and the low bandwidth, limited resource, and dynamic nature of mobile clients. In this paper, we descr...

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

ژورنال

عنوان ژورنال: ACM Transactions on Software Engineering and Methodology

سال: 2023

ISSN: ['1049-331X', '1557-7392']

DOI: https://doi.org/10.1145/3580598