Sequence Directed Hybrid Fuzzing

被引:0
|
作者
Liang, Hongliang [1 ]
Jiang, Lin [1 ]
Ai, Lu [1 ]
Wei, Jinyi [1 ]
机构
[1] Beijing Univ Posts & Telecommun, Sch Comp Sci, Beijing, Peoples R China
来源
PROCEEDINGS OF THE 2020 IEEE 27TH INTERNATIONAL CONFERENCE ON SOFTWARE ANALYSIS, EVOLUTION, AND REENGINEERING (SANER '20) | 2020年
关键词
sequence guidance; concolic execution; crash reproduction; true positive verification; vulnerability detection;
D O I
10.1109/saner48275.2020.9054807
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
Existing directed grey-box fuzzers are effective compared with coverage-based fuzzers. However, they fail to achieve a balance between effectiveness and efficiency, and it is difficult to cover complex paths due to random mutation. To mitigate the issue, we propose a novel approach, sequence directed hybrid fuzzing (SDHF), which leverages a sequence-directed strategy and concolic execution technique to enhance the effectiveness of fuzzing. Given a set of target statement sequences of a program, SDHF aims to generate inputs that can reach the statements in each sequence in order and trigger potential bugs in the program. We implement the proposed approach in a tool called Berry and evaluate its capability on crash reproduction, true positive verification, and vulnerability detection. Experimental results demonstrate that Berry outperforms four state-of-the-art fuzzers, including directed fuzzers BugRedux, AFLGo and Lolly, and undirected hybrid fuzzer QSYM. Moreover, Berry found 7 new vulnerabilities in real-world programs such as UPX and GNU Libextractor, and 3 new CVEs were assigned.
引用
收藏
页码:127 / 137
页数:11
相关论文
共 50 条
  • [1] Sequence Coverage Directed Greybox Fuzzing
    Liang, Hongliang
    Zhang, Yini
    Yu, Yue
    Xie, Zhuosi
    Jiang, Lin
    2019 IEEE/ACM 27TH INTERNATIONAL CONFERENCE ON PROGRAM COMPREHENSION (ICPC 2019), 2019, : 249 - 259
  • [2] Directed Greybox Fuzzing
    Bohme, Marcel
    Van-Thuan Pham
    Manh-Dung Nguyen
    Roychoudhury, Abhik
    CCS'17: PROCEEDINGS OF THE 2017 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY, 2017, : 2329 - 2344
  • [3] Multiple Targets Directed Greybox Fuzzing
    Liang, Hongliang
    Yu, Xinglin
    Cheng, Xianglin
    Liu, Jie
    Li, Jin
    IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING, 2024, 21 (01) : 325 - 339
  • [4] Probabilistic Path Prioritization for Hybrid Fuzzing
    Zhao, Lei
    Cao, Pengcheng
    Duan, Yue
    Yin, Heng
    Xuan, Jifeng
    IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING, 2022, 19 (03) : 1955 - 1973
  • [5] Effuzz: Efficient fuzzing by directed search for smart contracts
    Ji, Songyan
    Wu, Jin
    Qiu, Junfu
    Dong, Jian
    INFORMATION AND SOFTWARE TECHNOLOGY, 2023, 159
  • [6] G-Fuzz: A Directed Fuzzing Framework for gVisor
    Li, Yuwei
    Chen, Yuan
    Ji, Shouling
    Zhang, Xuhong
    Yan, Guanglu
    Liu, Alex X.
    Wu, Chunming
    Pan, Zulie
    Lin, Peng
    IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING, 2024, 21 (01) : 168 - 185
  • [7] A priority based path searching method for improving hybrid fuzzing
    Lin, Pei-hong
    Hong, Zheng
    Li, Yi-hao
    Wu, Li-fa
    COMPUTERS & SECURITY, 2021, 105
  • [8] GTFuzz: Guard Token Directed Grey-Box Fuzzing
    Li, Rundong
    Liang, HongLiang
    Liu, Liming
    Ma, Xutong
    Qu, Rong
    Yan, Jun
    Zhang, Jian
    2020 IEEE 25TH PACIFIC RIM INTERNATIONAL SYMPOSIUM ON DEPENDABLE COMPUTING (PRDC 2020), 2020, : 160 - 170
  • [9] SILK: Constraint-guided Hybrid Fuzzing
    Li, Junhao
    Zhang, Yujian
    2023 IEEE 47TH ANNUAL COMPUTERS, SOFTWARE, AND APPLICATIONS CONFERENCE, COMPSAC, 2023, : 607 - 616
  • [10] BSFuzz: Branch-State Guided Hybrid Fuzzing
    Hu, Qi
    Chen, Weijia
    Wang, Zhi
    Lu, Shuaibing
    Nie, Yuanping
    Li, Xiang
    Kuang, Xiaohui
    ELECTRONICS, 2023, 12 (19)
12345