Results 111 to 120 of about 337 (131)
Some of the next articles are maybe not open access.

A Partial-Lifting-Based Compiling Concolic Execution Approach

2021 IEEE 5th International Conference on Cryptography, Security and Privacy (CSP), 2021
It has been a common phenomenon that embedded devices are used ubiquitously while the security of proprietary software running on devices has become more and more significant. These softwares are often presented to researchers in binary forms. Due to the lack of program semantics and meta information, it is very difficult to analyze manually in large ...
Haotian Zhang, Weiyu Dong, Jian Lin 0007
openaire   +1 more source

Concolic testing for functional languages

open access: yesScience of Computer Programming, 2017
Concolic testing is a software testing technique that simultaneously combines concrete execution of a program (given specific input, along specific paths) with symbolic execution (generating new test inputs that explore other paths, which gives better ...
Nikolaos Papaspyrou   +1 more
exaly   +2 more sources

Detecting injection vulnerabilities in executable codes with concolic execution

2017 8th IEEE International Conference on Software Engineering and Service Science (ICSESS), 2017
Various methods have been suggested for detecting injection vulnerabilities in web-based applications by now. However, some injection vulnerabilities are not only web-based but also occur in stand-alone applications, i. e., SQL injection and OS command injection.
Maryam Mouzarani   +2 more
openaire   +1 more source

Device-agnostic Firmware Execution is Possible: A Concolic Execution Approach for Peripheral Emulation

Annual Computer Security Applications Conference, 2020
With the rapid proliferation of IoT devices, our cyberspace is nowadays dominated by billions of low-cost computing nodes, which are very heterogeneous to each other. Dynamic analysis, one of the most effective approaches to finding software bugs, has become paralyzed due to the lack of a generic emulator capable of running diverse previously-unseen ...
Chen Cao 0004   +3 more
openaire   +1 more source

Conpy: Concolic Execution Engine for Python Applications

2014
Concolic execution has become a promising technique for program analysis in recent years, whereas it rarely applies to Python applications. In this work, we propose a concolic execution engine for Python applications named Conpy. Conpy is easy to deploy since it is written in pure Python and it is not dependent on any third-party tools.
Ting Chen 0002   +4 more
openaire   +1 more source

Concolic Execute Fuzzing Based on Control-Flow Analysis

2015 11th International Conference on Computational Intelligence and Security (CIS), 2015
This paper proposes a method which utilizing taint analysis to reduce the unnecessary analysis routine, concentrating on the control-flow altering input using concolic (concrete and symbolic) execution procedure. A prototype, Concolic Fuzz is implemented based on this method, which is built on Pin platform at x86 binary level and using Z3 as the SMT ...
Jingxi Li, Xin Xu, Lejian Liao, Lu Li
openaire   +1 more source

Concolic Execution in Functional Programming by Program Instrumentation

2015
Concolic execution, a combination of concrete and symbolic execution, has become increasingly popular in recent approaches to model checking and test case generation. In general, an interpreter of the language is augmented in order to also deal with symbolic values.
Adrián Palacios, Germán Vidal
openaire   +1 more source

A Practical Concolic Execution Technique for Large Scale Software Systems

Proceedings of the Evaluation and Assessment in Software Engineering, 2020
The state explosion problem faced by concolic execution is significantly serious when detecting program bugs especially in large scale software systems. To mitigate the issue, we propose a practical concolic execution approach to detect vulnerabilities in this paper.
Hongliang Liang   +3 more
openaire   +1 more source

Perspectives on White-Box Testing: Coverage, Concurrency, and Concolic Execution

2015 IEEE 8th International Conference on Software Testing, Verification and Validation (ICST), 2015
The last years have seen a fruitful exchange of ideas between automated software verification and white-box software testing; the industrial impact of concolic testing for sequential software is the most notable result of this interdisciplinary effort.
Azadeh Farzan   +2 more
openaire   +1 more source

Concolic Execution Tailored for Hybrid Fuzzing.

2021
Recently, hybrid fuzzing, which combines fuzzing and concolic execution, has been highlighted to overcome limitations of both techniques. Despite its success in contrived programs such as DARPA Cyber Grand Challenge (CGC), it still falls short in finding bugs in real-world software due to its low performance of existing concolic executors.
openaire   +1 more source

Home - About - Disclaimer - Privacy