TL;DR
This paper introduces a novel fuzzing effectiveness evaluation method that incorporates software complexity metrics, leading to improved bug detection and the discovery of previously unknown vulnerabilities in widespread applications.
Contribution
It proposes a new approach combining code semantics and complexity metrics for fuzzing effectiveness assessment, enhancing bug detection capabilities.
Findings
Identified metrics that better detect bugs in software.
Validated approach increases fuzzing performance.
Discovered two critical zero-day vulnerabilities.
Abstract
Vulnerable software represents a tremendous threat to modern information systems. Vulnerabilities in widespread applications may be used to spread malware, steal money and conduct target attacks. To address this problem, developers and researchers use different approaches of dynamic and static software analysis; one of these approaches is called fuzzing. Fuzzing is performed by generating and sending potentially malformed data to an application under test. Since first appearance in 1988, fuzzing has evolved a lot, but issues which addressed to effectiveness evaluation have not fully investigated until now. In our research, we propose a novel approach of fuzzing effectiveness evaluation, taking into account semantics of executed code along with a quantitative assessment. For this purpose, we use specific metrics of source code complexity assessment adapted to perform analysis of machine…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
