Massive software applications possess complex data structures or parse complex data
structures; in such cases, vulnerabilities in the software become inevitable. The …

Fuzzing has proven to be a highly effective approach to uncover software bugs over the past
decade. After AFL popularized the groundbreaking concept of lightweight coverage …

Automated test generation can help developers craft high-quality software tests while
mitigating the manual effort needed for writing test code. Despite significant research efforts …

Coverage-guided greybox fuzzers rely on control-flow coverage feedback to explore a target
program and uncover bugs. Compared to control-flow coverage, data-flow coverage offers a …

Greybox fuzzing and mutation testing are two popular but mostly independent fields of
software testing research that have so far had limited overlap. Greybox fuzzing, generally …

In top-tier companies and academia, fuzzing has established itself as a valuable tool for
finding bugs. It is a tool created by experts for experts, and a lot of research is being invested …

Greybox fuzzing is a powerful testing technique. Given a set of initial seeds, greybox fuzzing
continuously generates new test inputs to execute the program under test and gravitates …

Over the past decade, hundreds of fuzzers have been published in top-tier security and
software engineering conferences. Fuzzers are used to automatically test programs, ideally …

Concolic execution follows the execution paths of concrete inputs, capable of generating
new inputs for unexplored code by solving negated path constraints. However, implicit flows …

In recent years, the research community has raised serious questions about the
reproducibility of scientific work. In particular, since many studies include some kind of …