نتایج جستجو برای: protocol fuzzing

تعداد نتایج: 250258  

2014
Fabien Duchene

Fuzz testing is an active testing technique which consists in automatically generating and sending malicious inputs to an application in order to hopefully trigger a vulnerability. Fuzzing entails such questions as: Where to fuzz? Which parameter to fuzz? What kind of anomaly to introduce? Where to observe its effects? etc. Different test contexts depending on the degree of knowledge assumed ab...

Journal: :Proceedings of the AAAI Conference on Artificial Intelligence 2019

Journal: :CoRR 2016
Rick Smetsers Joshua Moerman Mark Janssen Sicco Verwer

An ongoing challenge for learning algorithms formulated in the Minimally Adequate Teacher framework is to efficiently obtain counterexamples. In this paper we compare and combine conformance testing and mutation-based fuzzing methods for obtaining counterexamples when learning finite state machine models for the reactive software systems of the Rigorous Exampination of Reactive Systems (RERS) c...

2014
Thomas Braibant Jonathan Protzenko Gabriel Scherer

Despite recent advances in program certification, testing remains a widely-used component of the software development cycle. Various flavours of testing exist: popular ones include unit testing, which consists in manually crafting test cases for specific parts of the code base, as well as QuickCheck-style testing, where instances of a type are automatically generated to serve as test inputs. Th...

Journal: :CoRR 2017
Nicole Nichols Mark Raugas Robert Jasper Nathan Hilliard

We improve the performance of the American Fuzzy Lop (AFL) fuzz testing framework by using Generative Adversarial Network (GAN) models to reinitialize he system with novel seed files. We assess performance based on the temporal rate at which we produce novel and unseen code paths. We compare this approach to seed file generation from a random draw of bytes observed in the training seed files. T...

2017
Bhargava Shastry Markus Leutner Tobias Fiebig Kashyap Thimmaraju Fabian Yamaguchi Konrad Rieck Stefan Schmid Jean-Pierre Seifert Anja Feldmann

Fuzz testing is an effective and scalable technique to perform software security assessments. Yet, contemporary fuzzers fall short of thoroughly testing applications with a high degree of control-flow diversity, such as firewalls and network packet analyzers. In this paper, we demonstrate how static program analysis can guide fuzzing by augmenting existing program models maintained by the fuzze...

2013
Guillaume Bonfante Jean-Yves Marion Thanh Dinh Ta

One of the issues of a malware detection service is to update its database. For that, an analysis of new samples must be performed. Usually, one tries to replay the behavior of malware in a safe environment. But, a bot sample may activate a malicious function only if it receives some particular input from its command and control server. The game is to find inputs which activate all relevant bra...

2017
KaDonna Randolph

The USDA Forest Service Forest Inventory and Analysis (FIA) program makes and keeps current an inventory of all forest land in the United States. To comply with privacy laws while at the same time offering its data to the public, FIA makes approximate plot locations available through a process known as perturbing (“fuzzing”) and swapping. The free spatial scanning software program SaTScan toget...

Journal: :Proceedings of the Institute for System Programming of the RAS 2018

نمودار تعداد نتایج جستجو در هر سال

با کلیک روی نمودار نتایج را به سال انتشار فیلتر کنید