Symbiotic 10 brings four substantial improvements. First, we extended our clone of Klee
called JetKlee with lazy memory initialization. With this extension, JetKlee can symbolically …

The development of Symbiotic 9 focused mainly on two components. One is the symbolic
executor Slowbeast, which newly supports backward symbolic execution including its …

The main idea behind Bubaak is to run multiple program analyses in parallel and use
runtime monitoring and enforcement to observe and control their progress in real time. The …

Bubaak-SpLit is a tool for dynamically splitting verification tasks into parts that can then be
analyzed in parallel. It is built on top of Bubaak, a tool designed for running combinations of …

Smart contracts are susceptible to critical vulnerabilities. Hybrid dynamic analyses, such as
concolic execution assisted fuzzing and foundation model assisted fuzzing, have emerged …

Ranged program analysis has recently been proposed as a means to scale a single
analysis and to define parallel cooperation of different analyses. To this end, ranged …

Static analysis techniques for buffer overflow detection still struggle with being scalable for
millions of lines of code, while being precise enough to have an acceptable false positive …

Generating test cases is essential for discovering software bugs. However, finding bugs in
multi-path loops is challenging, especially when bugs can only be exposed after a specific …

Reachability is an important problem in program analysis. Automatically being able to show
that–and how–a certain state is reachable, can be used to detect bugs and vulnerabilities …

Dynamic symbolic execution (DSE) provides a precise means to analyze programs and it
can be used to generate test cases and to detect a variety of bugs including memory …