Method to improve edge coverage in fuzzing
Aiming at the problems of incomplete edge coverage,insufficient uses of edge coverage information and valid bytes information in AFL (American fuzz lop),a novel method was proposed.Firstly,a new seed selection algorithm was introduced,which could completely cover all edges discovered in one cycle.Se...
Saved in:
| Main Authors: | , , , , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Editorial Department of Journal on Communications
2019-11-01
|
| Series: | Tongxin xuebao |
| Subjects: | |
| Online Access: | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2019223/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841539358594695168 |
|---|---|
| author | Chunfu JIA Shengbo YAN Zhi WANG Chenlu WU Hang LI |
| author_facet | Chunfu JIA Shengbo YAN Zhi WANG Chenlu WU Hang LI |
| author_sort | Chunfu JIA |
| collection | DOAJ |
| description | Aiming at the problems of incomplete edge coverage,insufficient uses of edge coverage information and valid bytes information in AFL (American fuzz lop),a novel method was proposed.Firstly,a new seed selection algorithm was introduced,which could completely cover all edges discovered in one cycle.Secondly,the paths were scored according to the frequency of edges,to adjust the number of tests for each seed.Finally,more mutations were crafted on the valid bytes of AFL.Based on the method above,a new fuzzing tool named efuzz was implemented.Experiment results demonstrate that efuzz outperforms AFL and AFLFast in the edge coverage,with the increases of 5% and 9% respectively.In the LAVA-M dataset,efuzz found more vulnerabilities than AFL.Moreever,in real world applications efuzz has found three new security bugs with CVEs assigned.The method can effectively improve the edge coverage and vulnerability detection ability of fuzzer. |
| format | Article |
| id | doaj-art-7fbc4b234f05447b910366820cce8dfd |
| institution | Kabale University |
| issn | 1000-436X |
| language | zho |
| publishDate | 2019-11-01 |
| publisher | Editorial Department of Journal on Communications |
| record_format | Article |
| series | Tongxin xuebao |
| spelling | doaj-art-7fbc4b234f05447b910366820cce8dfd2025-01-14T07:18:12ZzhoEditorial Department of Journal on CommunicationsTongxin xuebao1000-436X2019-11-0140768559731901Method to improve edge coverage in fuzzingChunfu JIAShengbo YANZhi WANGChenlu WUHang LIAiming at the problems of incomplete edge coverage,insufficient uses of edge coverage information and valid bytes information in AFL (American fuzz lop),a novel method was proposed.Firstly,a new seed selection algorithm was introduced,which could completely cover all edges discovered in one cycle.Secondly,the paths were scored according to the frequency of edges,to adjust the number of tests for each seed.Finally,more mutations were crafted on the valid bytes of AFL.Based on the method above,a new fuzzing tool named efuzz was implemented.Experiment results demonstrate that efuzz outperforms AFL and AFLFast in the edge coverage,with the increases of 5% and 9% respectively.In the LAVA-M dataset,efuzz found more vulnerabilities than AFL.Moreever,in real world applications efuzz has found three new security bugs with CVEs assigned.The method can effectively improve the edge coverage and vulnerability detection ability of fuzzer.http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2019223/FuzzingvulnerabilityAFLedge coverage |
| spellingShingle | Chunfu JIA Shengbo YAN Zhi WANG Chenlu WU Hang LI Method to improve edge coverage in fuzzing Tongxin xuebao Fuzzing vulnerability AFL edge coverage |
| title | Method to improve edge coverage in fuzzing |
| title_full | Method to improve edge coverage in fuzzing |
| title_fullStr | Method to improve edge coverage in fuzzing |
| title_full_unstemmed | Method to improve edge coverage in fuzzing |
| title_short | Method to improve edge coverage in fuzzing |
| title_sort | method to improve edge coverage in fuzzing |
| topic | Fuzzing vulnerability AFL edge coverage |
| url | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2019223/ |
| work_keys_str_mv | AT chunfujia methodtoimproveedgecoverageinfuzzing AT shengboyan methodtoimproveedgecoverageinfuzzing AT zhiwang methodtoimproveedgecoverageinfuzzing AT chenluwu methodtoimproveedgecoverageinfuzzing AT hangli methodtoimproveedgecoverageinfuzzing |