Hunting bugs with Lévy flight foraging
We present a new method for random testing of binary executables inspired by biology. In our approach we introduce the first fuzzer based on a mathematical model for optimal foraging. To minimize search time for possible vulnerabilities we generate test cases with Lévy flights in the input space. In order to dynamically adapt test generation behavior to actual path exploration performance we define a suitable measure for quality evaluation of test cases. This measure takes into account previously discovered code regions and allows us to construct a feedback mechanism. By controlling diffusivity of the test case generating Lévy processes with evaluation feedback from dynamic instrumentation we are able to define a fully self-adaptive fuzzing algorithm.
Hunting bugs with Lévy flight foraging
IEEE Symposium on Security and Privacy Workshops, SPW 2016
Authors: | Konstantin Böttinger |
Year/month: | 2016/5 |
Booktitle: | IEEE Symposium on Security and Privacy Workshops, SPW 2016 |
Pages: | 111-117 |
Address: | San Jose, California, USA |
Fulltext: | click here |
Abstract |
|
We present a new method for random testing of binary executables inspired by biology. In our approach we introduce the first fuzzer based on a mathematical model for optimal foraging. To minimize search time for possible vulnerabilities we generate test cases with Lévy flights in the input space. In order to dynamically adapt test generation behavior to actual path exploration performance we define a suitable measure for quality evaluation of test cases. This measure takes into account previously discovered code regions and allows us to construct a feedback mechanism. By controlling diffusivity of the test case generating Lévy processes with evaluation feedback from dynamic instrumentation we are able to define a fully self-adaptive fuzzing algorithm. |
Bibtex:
@inproceedings { beefuzz,author = { Konstantin Böttinger},
title = { Hunting bugs with Lévy flight foraging },
year = { 2016 },
month = { May },
booktitle = { IEEE Symposium on Security and Privacy Workshops, SPW 2016 },
address = { San Jose, California, USA },
pages = { 111-117 },
url = { http://dx.doi.org/10.1109/SPW.2016.9 },
}