FuSeBMC: A White-Box Fuzzer for Finding Security Vulnerabilities in C Programs (Competition Contribution)-Reference-Cited by-同舟云学术

FuSeBMC: A White-Box Fuzzer for Finding Security Vulnerabilities in C Programs (Competition Contribution)

Published:2021 Issue: Volume: Page:363-367
ISSN:0302-9743
Container-title:Fundamental Approaches to Software Engineering
language:
Short-container-title:

Author:

Alshmrany Kaled M.^ORCID,Menezes Rafael S.^ORCID,Gadelha Mikhail R.^ORCID,Cordeiro Lucas C.^ORCID

Abstract

AbstractWe describe and evaluate a novel white-box fuzzer for C programs named , which combines fuzzing and symbolic execution, and applies Bounded Model Checking (BMC) to find security vulnerabilities in C programs. explores and analyzes C programs (1) to find execution paths that lead to property violations and (2) to incrementally inject labels to guide the fuzzer and the BMC engine to produce test-cases for code coverage. successfully participates in Test-Comp’21 and achieves first place in the category and second place in the category.

Publisher

Springer International Publishing

Link

http://link.springer.com/content/pdf/10.1007/978-3-030-71500-7_19

Reference9 articles.

1. Clang documentation. http://clang.llvm.org/docs/index.html

2. Anand, S., Burke, E.K., Chen, T.Y., Clark, J.A., Cohen, M.B., Grieskamp, W., Harman, M., Harrold, M.J., McMinn, P.: An orchestrated survey of methodologies for automated software test-case generation. J. Syst. Softw. 86(8), 1978–2001, 2013

3. Beyer, D.: Second competition on software testing: Test-Comp 2020. In FASE, LNCS 12076, pp. 505–519, 2020

4. Gadelha, M.R., Monteiro, F.R., Morse, J., Cordeiro, L.C., Fischer, B., Nicole, D.A.: ESBMC 5.0: An industrial-strength C model checker. In ASE, pp. 888–891, 2018

5. Gadelha, M.R., Monteiro, F.R., Cordeiro, B., Nicole: ESBMC v6.0: Verifying C Programs Using k-Induction and Invariant Inference - (Competition Contribution). In TACAS, LNCS 11429, pp. 209–213, 2019

Cited by 7 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Towards Integrity and Reliability in Embedded Systems: The Synergy of ESBMC and Arduino Integration;2023 XIII Brazilian Symposium on Computing Systems Engineering (SBESC);2023-11-21

2. Adaptive Emulation Framework for Multi-Architecture IoT Firmware Testing;Computers, Materials & Continua;2023

3. EBF 4.2: Black-Box Cooperative Verification for Concurrent Programs;Tools and Algorithms for the Construction and Analysis of Systems;2023

4. Position Paper: Towards a Hybrid Approach to Protect Against Memory Safety Vulnerabilities;2022 IEEE Secure Development Conference (SecDev);2022-10

5. FuSeBMC v4: Smart Seed Generation for Hybrid Fuzzing;Fundamental Approaches to Software Engineering;2022