CLIFuzzer: mining grammars for command-line invocations

Gupta, Abhilash; Gopinath, Rahul; Zeller, Andreas

doi:10.1145/3540250.3558918

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2024

Publication Types

Select...

Book1

Other1

Article1

Relationship

Self Cite0

Independent3

Authors

Journals

Cited by 3 publications

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

GrammarForge: Learning Program Input Grammars for Fuzz Testing

Sochor,

Ferrarotti,

Wille

2024

Lecture Notes in Computer Science

View full text Add to dashboard Cite

GrammarForge: Learning Program Input Grammars for Fuzz Testing

Sochor,

Ferrarotti,

Wille

2024

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Enhancing Black-box Compiler Option Fuzzing with LLM through Command Feedback

Wang,

Chen

et al. 2024

2024 IEEE 35th International Symposium on Software Reliability Engineering (ISSRE)

View full text Add to dashboard Cite

ZigZagFuzz: Interleaved Fuzzing of Program Options and Files

Lee,

Choi,

Hong

et al. 2024

ACM Trans. Softw. Eng. Methodol.

View full text Add to dashboard Cite

Command-line options (e.g., -l , -F , -R for ls ) given to a command-line program can significantly alternate the behaviors of the program. Thus, fuzzing not only file input but also program options can improve test coverage and bug detection. In this paper, we propose ZigZagFuzz which achieves higher test coverage and detects more bugs than the state-of-the-art fuzzers by separately mutating program options and file inputs in an iterative/interleaving manner. ZigZagFuzz applies the following three core ideas. First, to utilize different characteristics of the program option domain and the file input domain, ZigZagFuzz separates phases of mutating program options from ones of mutating file inputs and performs two distinct mutation strategies on the two different domains. Second, to reach deep segments of a target program that are accessed through an interleaving sequence of program option checks and file inputs checks, ZigZagFuzz continuously interleaves phases of mutating program options with phases of mutating file inputs. Finally, to improve fuzzing performance further, ZigZagFuzz periodically shrinks input corpus by removing similar test inputs based on their function coverage. The experiment results on the 20 real-world programs show that ZigZagFuzz improves test coverage and detects 1.9 to 10.6 times more bugs than the state-of-the-art fuzzers that mutate program options such as AFL++-argv, AFL++-all, Eclipser, CarpetFuzz, ConfigFuzz, and POWER. We have reported the new bugs detected by ZigZagFuzz, and the original developers confirmed our bug reports.

show abstract

CLIFuzzer: mining grammars for command-line invocations

Cited by 3 publications

References 3 publications

GrammarForge: Learning Program Input Grammars for Fuzz Testing

GrammarForge: Learning Program Input Grammars for Fuzz Testing

Enhancing Black-box Compiler Option Fuzzing with LLM through Command Feedback

ZigZagFuzz: Interleaved Fuzzing of Program Options and Files

Contact Info

Product

Resources

About