计算机工程2009,Vol.35Issue(21):33-35,3.
基于符号化执行的Fuzzing测试方法
Fuzzing Test Approach Based on Symbolic Execution
陈建敏 1舒辉 1熊小兵1
作者信息
- 1. 解放军信息工程大学信息工程学院,郑州,450002
- 折叠
摘要
Abstract
This paper designs and implements an approach of Fuzzing test based on symbolic execution. The path constraints are collected and generated through code instrumentation during the application execution, and new path constraints are generated with a search algorithm and solved, which constructs new inputs that can steer the application to follow alternative execution paths. An improved taint analysis mechanism is presented to optimize the path constraints. This approach improves the code coverage and the vulnerabilities exploiting efficiency.关键词
Fuzzing测试/代码插装/符号化执行/污点分析Key words
Fuzzing test/ code instrumentation/ symbolic execution/ taint analysis分类
信息技术与安全科学引用本文复制引用
陈建敏,舒辉,熊小兵..基于符号化执行的Fuzzing测试方法[J].计算机工程,2009,35(21):33-35,3.
