Results 111 to 120 of about 337 (131)
Some of the next articles are maybe not open access.
A Partial-Lifting-Based Compiling Concolic Execution Approach
2021 IEEE 5th International Conference on Cryptography, Security and Privacy (CSP), 2021It has been a common phenomenon that embedded devices are used ubiquitously while the security of proprietary software running on devices has become more and more significant. These softwares are often presented to researchers in binary forms. Due to the lack of program semantics and meta information, it is very difficult to analyze manually in large ...
Haotian Zhang, Weiyu Dong, Jian Lin 0007
openaire +1 more source
Concolic testing for functional languages
Concolic testing is a software testing technique that simultaneously combines concrete execution of a program (given specific input, along specific paths) with symbolic execution (generating new test inputs that explore other paths, which gives better ...
Nikolaos Papaspyrou +1 more
exaly +2 more sources
Detecting injection vulnerabilities in executable codes with concolic execution
2017 8th IEEE International Conference on Software Engineering and Service Science (ICSESS), 2017Various methods have been suggested for detecting injection vulnerabilities in web-based applications by now. However, some injection vulnerabilities are not only web-based but also occur in stand-alone applications, i. e., SQL injection and OS command injection.
Maryam Mouzarani +2 more
openaire +1 more source
Annual Computer Security Applications Conference, 2020
With the rapid proliferation of IoT devices, our cyberspace is nowadays dominated by billions of low-cost computing nodes, which are very heterogeneous to each other. Dynamic analysis, one of the most effective approaches to finding software bugs, has become paralyzed due to the lack of a generic emulator capable of running diverse previously-unseen ...
Chen Cao 0004 +3 more
openaire +1 more source
With the rapid proliferation of IoT devices, our cyberspace is nowadays dominated by billions of low-cost computing nodes, which are very heterogeneous to each other. Dynamic analysis, one of the most effective approaches to finding software bugs, has become paralyzed due to the lack of a generic emulator capable of running diverse previously-unseen ...
Chen Cao 0004 +3 more
openaire +1 more source
Conpy: Concolic Execution Engine for Python Applications
2014Concolic execution has become a promising technique for program analysis in recent years, whereas it rarely applies to Python applications. In this work, we propose a concolic execution engine for Python applications named Conpy. Conpy is easy to deploy since it is written in pure Python and it is not dependent on any third-party tools.
Ting Chen 0002 +4 more
openaire +1 more source
Concolic Execute Fuzzing Based on Control-Flow Analysis
2015 11th International Conference on Computational Intelligence and Security (CIS), 2015This paper proposes a method which utilizing taint analysis to reduce the unnecessary analysis routine, concentrating on the control-flow altering input using concolic (concrete and symbolic) execution procedure. A prototype, Concolic Fuzz is implemented based on this method, which is built on Pin platform at x86 binary level and using Z3 as the SMT ...
Jingxi Li, Xin Xu, Lejian Liao, Lu Li
openaire +1 more source
Concolic Execution in Functional Programming by Program Instrumentation
2015Concolic execution, a combination of concrete and symbolic execution, has become increasingly popular in recent approaches to model checking and test case generation. In general, an interpreter of the language is augmented in order to also deal with symbolic values.
Adrián Palacios, Germán Vidal
openaire +1 more source
A Practical Concolic Execution Technique for Large Scale Software Systems
Proceedings of the Evaluation and Assessment in Software Engineering, 2020The state explosion problem faced by concolic execution is significantly serious when detecting program bugs especially in large scale software systems. To mitigate the issue, we propose a practical concolic execution approach to detect vulnerabilities in this paper.
Hongliang Liang +3 more
openaire +1 more source
Perspectives on White-Box Testing: Coverage, Concurrency, and Concolic Execution
2015 IEEE 8th International Conference on Software Testing, Verification and Validation (ICST), 2015The last years have seen a fruitful exchange of ideas between automated software verification and white-box software testing; the industrial impact of concolic testing for sequential software is the most notable result of this interdisciplinary effort.
Azadeh Farzan +2 more
openaire +1 more source
Concolic Execution Tailored for Hybrid Fuzzing.
2021Recently, hybrid fuzzing, which combines fuzzing and concolic execution, has been highlighted to overcome limitations of both techniques. Despite its success in contrived programs such as DARPA Cyber Grand Challenge (CGC), it still falls short in finding bugs in real-world software due to its low performance of existing concolic executors.
openaire +1 more source

