| 일 | 월 | 화 | 수 | 목 | 금 | 토 |
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | 4 | 5 | 6 | |
| 7 | 8 | 9 | 10 | 11 | 12 | 13 |
| 14 | 15 | 16 | 17 | 18 | 19 | 20 |
| 21 | 22 | 23 | 24 | 25 | 26 | 27 |
| 28 | 29 | 30 |
- vulnerabilties
- libFuzzer
- ICSE
- FSE
- libxml2
- protobuf
- fuzzing
- 느헤미야
- unit-testing
- Software Engineering
- software-testing
- 대학원생
- 생명의 삶
- build
- QT
- Environment
- binary code analaysis
- sotware-testing
- linking
- software-engineering
- Cyber Security
- graphfuzz
- 소프트웨어 취약저 분석
- fault-localization
- reading critique
- 프로그램 분석
- binary code analysis
- 묵상
- citrus
- 바이너리 분석
- Today
- Total
목록software-testing (6)
heechan.yang
[Automated Fuzz Driver Generation] CITRUS: Automated Unit Testing Tool for Real-world C++ Programs
IntroductionCITRUS: C++ unIt Testing for Reliable and Usable SoftwareCITRUS is an automated unit testing tool for C++ programs. This tool analyzes the target software, generates and mutates test cases (a.k.a test harness, drivers, method sequence) to explore diverse states of a program in the goal of increasing test coverage. Existing QuestionWhen a test case is generated, citrus only tests this..
[Automated Fuzz Driver Generation] GraphFuzz on JsonBox
Thoughts while TestingTargetting a FunctionWith 1 process of 6 hours of test, GraphFuzz only covered 50.9% line coverage.Some endpoint drivers are called a significantly smaller amount of times than others (due to randomness).I have experimented by removing other endpoint driver in schema in hopes of testing certain function more.By doing so, GraphFuzz was able to cover more lines in that specif..
[Fuzzing] The Surface of LibFuzzer
LibFuzzer is a coverage guided fuzzing engine. This engine repeatedly executes a target with fuzzer input.LibFuzzer selects a sample input from a corpus.It mutates the input. [Optional: user can include custom implemented cross over function and a mutator function.]It runs the target driver with the mutated input.If it produces new coverage, the input is put back to the corpus, otherwise, it is ..
[Automated Fuzz Driver Generation] Dive Into GraphFuzz
ContentsOverviewEndpoint & GraphsHow it WorksSimple Demo: CarPersonal ThoughtsReferences1. OverviewGraphFuzz is a software testing tool. It is focused to API testing by invoking API functions at valid order that are mutated from a structure of a graph. With this mechanism, GraphFuzz is able to find bugs that arise from invoking API functions in a certain order. The main objective of GraphFuzz is..
[Automated Fuzz Driver Generation] GraphFuzz Experiment Reproduction
ContentsIntroductionInstallationhello_graphfuzz ReproductionSkia ReproductionReferences1. Introduction [1]GraphFuzz is an API-based testing tool to effectively measure test coverage. "GraphFuzz models sequences of executed functions as a dataflow graph, thus enabling it to perform graph-based mutations both at the data and the execution trace level" [1]. Using model (structure or grammar) to inf..
[Code Coverage] Measuring Branch Coverage (@Source Code Level)
ContentsIntroductionInstalling DependenciesApproach to SolutionUnderstanding the Concept of Branch CoverageSummaryReferences1. IntroductionMeasuring coverage of a software at source code level is to test how much of existing branches have been fallen through with given test inputs. Therefore, existing branches are first identified. Execution of software comes after for measuring the branch cover..