Code coverage analysis plays an important role in the software testing process. More recently, the remarkable effectiveness of coverage feedback has triggered a broad interest in feedback-guided fuzzing. In this work, we discuss static instrumentation techniques for binary-level coverage analysis without compiler support. We show that the proposed techniques are precise, efficient, and transparent significantly beyond the state of the art. We implement these techniques into two tools, namely, Spedi and bcov. Both tools are open source and publicly available. Spedi shows that the disassembly and function identification of stripped binaries can be highly accurate without resort to any external information. We build on these important results...
Fuzzing is an effective software testing method that discovers bugs by feeding target applications w...
International audienceFuzzing is a popular software testing method that discovers bugs by massively ...
Defining software reliability is hard enough, let alone ensuring it. However, most all software deve...
Abstract—Branch coverage (BC) is a widely used test criterion that is supported by many tools. Altho...
This dissertation is concerned with static analysis of binary executables in a theoretically well-fo...
Static binary analysis is being used extensively for detecting security flaws in binary programs. Mu...
Associated research group: Critical Systems Research GroupSoftware analysis tools and techniques oft...
Fuzzing is an effective software testing method that discovers bugs by feeding target applications w...
Static binary analysis is a key tool to assess the security of thirdparty binaries and legacy progra...
Abstract—Software analysis tools and techniques often lever-age structural code coverage information...
In recent years, binary code analysis, i.e., applying program analysis directly at the machine code ...
Defining software reliability is hard enough, let alone ensuring it. However, most all software deve...
Software analysis tools and techniques often leverage structural code coverage information to reason...
Robust and powerful software instrumentation tools are es-sential for dynamic program analysis tasks...
Robust and powerful software instrumentation tools are essential for dynamic program analysis tasks ...
Fuzzing is an effective software testing method that discovers bugs by feeding target applications w...
International audienceFuzzing is a popular software testing method that discovers bugs by massively ...
Defining software reliability is hard enough, let alone ensuring it. However, most all software deve...
Abstract—Branch coverage (BC) is a widely used test criterion that is supported by many tools. Altho...
This dissertation is concerned with static analysis of binary executables in a theoretically well-fo...
Static binary analysis is being used extensively for detecting security flaws in binary programs. Mu...
Associated research group: Critical Systems Research GroupSoftware analysis tools and techniques oft...
Fuzzing is an effective software testing method that discovers bugs by feeding target applications w...
Static binary analysis is a key tool to assess the security of thirdparty binaries and legacy progra...
Abstract—Software analysis tools and techniques often lever-age structural code coverage information...
In recent years, binary code analysis, i.e., applying program analysis directly at the machine code ...
Defining software reliability is hard enough, let alone ensuring it. However, most all software deve...
Software analysis tools and techniques often leverage structural code coverage information to reason...
Robust and powerful software instrumentation tools are es-sential for dynamic program analysis tasks...
Robust and powerful software instrumentation tools are essential for dynamic program analysis tasks ...
Fuzzing is an effective software testing method that discovers bugs by feeding target applications w...
International audienceFuzzing is a popular software testing method that discovers bugs by massively ...
Defining software reliability is hard enough, let alone ensuring it. However, most all software deve...