Concept
Metasploit
Related publications (4)
MINERVA: Browser API Fuzzing with Dynamic Mod-Ref Analysis
Mathias Josef Payer, Yu Jiang, Chijin Zhou
Browser APIs are essential to the modern web experience. Due to their large number and complexity, they vastly expand the attack surface of browsers. To detect vulnerabilities in these APIs, fuzzers generate test cases with a large amount of random API inv ...
New York2022Seed Selection for Successful Fuzzing
Mutation-based greybox fuzzing-unquestionably the most widely-used fuzzing technique-relies on a set of non-crashing seed inputs (a corpus) to bootstrap the bug-finding process. When evaluating a fuzzer, common approaches for constructing this corpus inclu ...
ASSOC COMPUTING MACHINERY2021FuzzGen: Automatic Fuzzer Generation
Fuzzing is a testing technique to discover unknown vulnerabilities in software. When applying fuzzing to libraries, the core idea of supplying random input remains unchanged, yet it is non-trivial to achieve good code coverage. Libraries cannot run as stan ...
USENIX ASSOC2020Automated Vulnerability Discovery in Distributed Systems
Rachid Guerraoui, George Candea, Radu Banabic
In this paper we present a technique for automatically assessing the amount of damage a small number of participant nodes can inflict on the overall performance of a large distributed system. We propose a feedback-driven tool that synthesizes malicious node ...
2011