Vulnerable Region-Aware Greybox Fuzzing

Ling Yun Situ, Zhi Qiang Zuo, Le Guan, Lin Zhang Wang, Xuan Dong Li, Jin Shi, Peng Liu

Research output: Contribution to journalArticlepeer-review

Abstract

Fuzzing is known to be one of the most effective techniques to uncover security vulnerabilities of large-scale software systems. During fuzzing, it is crucial to distribute the fuzzing resource appropriately so as to achieve the best fuzzing performance under a limited budget. Existing distribution strategies of American Fuzzy Lop (AFL) based greybox fuzzing focus on increasing coverage blindly without considering the metrics of code regions, thus lacking the insight regarding which region is more likely to be vulnerable and deserves more fuzzing resources. We tackle the above drawback by proposing a vulnerable region-aware greybox fuzzing approach. Specifically, we distribute more fuzzing resources towards regions that are more likely to be vulnerable based on four kinds of code metrics. We implemented the approach as an extension to AFL named RegionFuzz. Large-scale experimental evaluations validate the effectiveness and efficiency of RegionFuzz-11 new bugs including three new CVEs are successfully uncovered by RegionFuzz.

Original languageEnglish (US)
Pages (from-to)1212-1228
Number of pages17
JournalJournal of Computer Science and Technology
Volume36
Issue number5
DOIs
StatePublished - Oct 2021

All Science Journal Classification (ASJC) codes

  • Software
  • Theoretical Computer Science
  • Hardware and Architecture
  • Computer Science Applications
  • Computational Theory and Mathematics

Fingerprint

Dive into the research topics of 'Vulnerable Region-Aware Greybox Fuzzing'. Together they form a unique fingerprint.

Cite this