2016
DOI: 10.1007/978-3-319-45744-4_29
|View full text |Cite
|
Sign up to set email alerts
|

IFuzzer: An Evolutionary Interpreter Fuzzer Using Genetic Programming

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1
1
1

Citation Types

0
53
0

Year Published

2018
2018
2024
2024

Publication Types

Select...
4
2
2

Relationship

0
8

Authors

Journals

citations
Cited by 79 publications
(56 citation statements)
references
References 27 publications
0
53
0
Order By: Relevance
“…How does CodeAlchemist perform compared to existing JS fuzzers in terms of their bug finding ability? To answer this question, we compared CodeAlchemist against jsfunfuzz [27], which is the state-of-the-art fuzzers maintained by Mozilla, and IFuzzer [33], which is a variant of LangFuzz [17]. We first evaluated these three fuzzers to compare how many known CVEs and bugs they can find in an old version of ChakraCore.…”
Section: Comparison Against State-of-the-art Js Engine Fuzzersmentioning
confidence: 99%
See 1 more Smart Citation
“…How does CodeAlchemist perform compared to existing JS fuzzers in terms of their bug finding ability? To answer this question, we compared CodeAlchemist against jsfunfuzz [27], which is the state-of-the-art fuzzers maintained by Mozilla, and IFuzzer [33], which is a variant of LangFuzz [17]. We first evaluated these three fuzzers to compare how many known CVEs and bugs they can find in an old version of ChakraCore.…”
Section: Comparison Against State-of-the-art Js Engine Fuzzersmentioning
confidence: 99%
“…GramFuzz [13] and BlendFuzz [37] use the same intuition as LangFuzz, but they focus on other languages such as HTML, CSS, as well as JS. IFuzzer [33] improves upon LangFuzz by employing genetic programming to generate unseen JS test cases. TreeFuzz [24] and Skyfire [35] construct probabilistic language models from a given set of seeds in order to generate valid JS code snippets.…”
Section: A Fuzzingmentioning
confidence: 99%
“…Many fuzzers [10], [23], [24], [25] generate inputs based on context-free grammar. Csmith [10] is a C-compiler test tool which can generate random C programs conforming to the C99 standard.…”
Section: Generation-based Fuzzingmentioning
confidence: 99%
“…Sirer and Bershad developed lava [23] to generate effective test suites for JVM. IFuzzer [24] takes the context-free grammar of a language as the input to generate parse trees and to extract code fragments from a given test-suite. Then it generates new code fragments by performing genetic operations on the parse tree.…”
Section: Generation-based Fuzzingmentioning
confidence: 99%
“…A fuzzer can be classified as generation-based (e.g., [33,62,64,69]) or mutation-based (e.g., [9,42,54,58]), depending on whether test inputs are generated by the knowledge of the input format or grammar or by modifying well-formed test inputs. A fuzzer can also be classified as whitebox (e.g., [26,52]), greybox (e.g., [9,42]) or blackbox (e.g., [45,66]), depending on the degree of leveraging a target program's internal structure, which reflects the tradeoffs between effectiveness and efficiency.…”
Section: Introductionmentioning
confidence: 99%