软件漏洞模糊测试的关键分支探索及热点更新算法OA北大核心CSTPCD

In software development and application,due to its reproducibility,fuzzy testing can help identify vulnerabilities and analyze the causes of vulnerabilities in a targeted manner.In order to address the issues of efficiency and testing intensity in the fuzzy testing process,this paper proposed a key branch exploration and hotspot update algorithm for software vulnerabili-ty fuzzy testing.This method guided the exploration direction of the fuzzy testing process and the generation of test cases by capturing,analyzing,and utilizing key information on the execution position of the inspected program when processing test ca-ses.The experimental results show that the proposed method has a significant improvement in vulnerability detection ability compared to the traditional randomly divergent fuzzy testing methods,and more than 100 undisclosed vulnerabilities were found in 14 open source programs such as Otfcc and Swftools which providing a new and reliable approach for using fuzzy testing to detect software vulnerability.