Kernel fuzzing is important for finding critical kernel vulnerabilities. Close-source (e.g., Windows) operating system kernel fuzzing is even more challenging due to the lack of source code. Existing approaches fuzz the kernel by modeling syscall sequences from traces or static analysis of system codes. However, a common limitation is that they do not learn and mutate the syscall sequences to reach different kernel states, which can potentially result in more bugs or crashes. In this paper, we propose WinkFuzz, an approach to learn and mutate traced syscall sequences in order to reach different kernel states. WinkFuzz learns syscall dependencies from the trace, identifies potential syscalls in the trace that can have dependent subsequent ...
Fuzz testing ("fuzzing") is a widely-used and effective dynamic technique to discover crashes and se...
Fuzzing is a testing technique to discover unknown vulnerabilities in software. When applying fuzzin...
Jailbreak vulnerabilities in Large Language Models (LLMs), which exploit meticulously crafted prompt...
The monolithic nature of modern OS kernels leads to a constant stream of bugs being discovered autom...
System software is a lucrative target for cyber attacks due to its high privilege and large att...
Today's mainstream operating systems (OSs) have monolithic kernels, in which low-level systems softw...
Fuzzing is a simple yet effect approach to discover bugs by repeatedly testing the target system usi...
Fuzz testing is an effective technique for finding software vulnerabilities. Fuzzing works by feedin...
Abstract—Fuzzing is a method to discover software bugs and vulnerabilities by automatic test input g...
Fuzzing is a key method to discover vulnerabilities in programs. Despite considerable progress in th...
This deposit maintains the inputs generated by DifuzzRTL. Following is the original abstract: Mode...
Fuzz testing has proven successful in finding security vulnerabilities in large programs. However, t...
Fuzzing is an effective technique for automatically uncovering bugs in software. Since it was introd...
Our computers, phones, and other smart devices are running a vast and ever increasing amount of soft...
Software bugs remain pervasive in modern software systems. As software becomes increasingly intertwi...
Fuzz testing ("fuzzing") is a widely-used and effective dynamic technique to discover crashes and se...
Fuzzing is a testing technique to discover unknown vulnerabilities in software. When applying fuzzin...
Jailbreak vulnerabilities in Large Language Models (LLMs), which exploit meticulously crafted prompt...
The monolithic nature of modern OS kernels leads to a constant stream of bugs being discovered autom...
System software is a lucrative target for cyber attacks due to its high privilege and large att...
Today's mainstream operating systems (OSs) have monolithic kernels, in which low-level systems softw...
Fuzzing is a simple yet effect approach to discover bugs by repeatedly testing the target system usi...
Fuzz testing is an effective technique for finding software vulnerabilities. Fuzzing works by feedin...
Abstract—Fuzzing is a method to discover software bugs and vulnerabilities by automatic test input g...
Fuzzing is a key method to discover vulnerabilities in programs. Despite considerable progress in th...
This deposit maintains the inputs generated by DifuzzRTL. Following is the original abstract: Mode...
Fuzz testing has proven successful in finding security vulnerabilities in large programs. However, t...
Fuzzing is an effective technique for automatically uncovering bugs in software. Since it was introd...
Our computers, phones, and other smart devices are running a vast and ever increasing amount of soft...
Software bugs remain pervasive in modern software systems. As software becomes increasingly intertwi...
Fuzz testing ("fuzzing") is a widely-used and effective dynamic technique to discover crashes and se...
Fuzzing is a testing technique to discover unknown vulnerabilities in software. When applying fuzzin...
Jailbreak vulnerabilities in Large Language Models (LLMs), which exploit meticulously crafted prompt...