Binary Fuzz Testing Method Based on LSTM

Xiaoxiao Yuan; Limin Pan; Senlin Luo

doi:10.1088/1757-899X/612/3/032192

Binary Fuzz Testing Method Based on LSTM

Xiaoxiao Yuan^*, Limin Pan, Senlin Luo

^*此作品的通讯作者

信息与电子学院

Beijing Institute of Technology

科研成果: 期刊稿件 › 会议文章 › 同行评审

1 引用（Scopus）

摘要

Fuzzing is an effective software testing technique to find bugs. In the binary fuzzing, the attempt of generating test data mainly focuses on the improvement of the mutation algorithm, which lacks further screening of the test data. This paper proposes a binary fuzz testing method based on long short-term memory. This method record the executed path information by QEMU. Then we assign values to different code branches according to the frequency of executed path. The path weights can be calculated. The LSTM model will be trained by test data and the path weights. Finally, we can take the test data as input and filter the data by referring to the path weights. This method can improve the time efficiency of fuzz testing. Experiments on a variety of different types of binary programs show that compared to the state-of-the-art fuzzer American fuzzy lop, this method achieves higher code coverage and time efficiency in the same time.

源语言	英语
文章编号	032192
期刊	IOP Conference Series: Materials Science and Engineering
卷	612
期	3
DOI	https://doi.org/10.1088/1757-899X/612/3/032192
出版状态	已出版 - 21 10月 2019
活动	2019 6th International Conference on Advanced Composite Materials and Manufacturing Engineering, ACMME 2019 - Xishuangbanna, Yunnan, 中国期限: 22 6月 2019 → 23 6月 2019

访问文件

10.1088/1757-899X/612/3/032192

其它文件与链接

链接到 Scopus 的出版物

引用此

@article{0a126831b0ec4ffeabbdc8af874f12f6,

title = "Binary Fuzz Testing Method Based on LSTM",

abstract = "Fuzzing is an effective software testing technique to find bugs. In the binary fuzzing, the attempt of generating test data mainly focuses on the improvement of the mutation algorithm, which lacks further screening of the test data. This paper proposes a binary fuzz testing method based on long short-term memory. This method record the executed path information by QEMU. Then we assign values to different code branches according to the frequency of executed path. The path weights can be calculated. The LSTM model will be trained by test data and the path weights. Finally, we can take the test data as input and filter the data by referring to the path weights. This method can improve the time efficiency of fuzz testing. Experiments on a variety of different types of binary programs show that compared to the state-of-the-art fuzzer American fuzzy lop, this method achieves higher code coverage and time efficiency in the same time.",

author = "Xiaoxiao Yuan and Limin Pan and Senlin Luo",

note = "Publisher Copyright: {\textcopyright} Published under licence by IOP Publishing Ltd.; 2019 6th International Conference on Advanced Composite Materials and Manufacturing Engineering, ACMME 2019 ; Conference date: 22-06-2019 Through 23-06-2019",

year = "2019",

month = oct,

day = "21",

doi = "10.1088/1757-899X/612/3/032192",

language = "English",

volume = "612",

journal = "IOP Conference Series: Materials Science and Engineering",

issn = "1757-8981",

publisher = "IOP Publishing Ltd.",

number = "3",

}

TY - JOUR

T1 - Binary Fuzz Testing Method Based on LSTM

AU - Yuan, Xiaoxiao

AU - Pan, Limin

AU - Luo, Senlin

N1 - Publisher Copyright: © Published under licence by IOP Publishing Ltd.

PY - 2019/10/21

Y1 - 2019/10/21

N2 - Fuzzing is an effective software testing technique to find bugs. In the binary fuzzing, the attempt of generating test data mainly focuses on the improvement of the mutation algorithm, which lacks further screening of the test data. This paper proposes a binary fuzz testing method based on long short-term memory. This method record the executed path information by QEMU. Then we assign values to different code branches according to the frequency of executed path. The path weights can be calculated. The LSTM model will be trained by test data and the path weights. Finally, we can take the test data as input and filter the data by referring to the path weights. This method can improve the time efficiency of fuzz testing. Experiments on a variety of different types of binary programs show that compared to the state-of-the-art fuzzer American fuzzy lop, this method achieves higher code coverage and time efficiency in the same time.

AB - Fuzzing is an effective software testing technique to find bugs. In the binary fuzzing, the attempt of generating test data mainly focuses on the improvement of the mutation algorithm, which lacks further screening of the test data. This paper proposes a binary fuzz testing method based on long short-term memory. This method record the executed path information by QEMU. Then we assign values to different code branches according to the frequency of executed path. The path weights can be calculated. The LSTM model will be trained by test data and the path weights. Finally, we can take the test data as input and filter the data by referring to the path weights. This method can improve the time efficiency of fuzz testing. Experiments on a variety of different types of binary programs show that compared to the state-of-the-art fuzzer American fuzzy lop, this method achieves higher code coverage and time efficiency in the same time.

UR - http://www.scopus.com/inward/record.url?scp=85074493690&partnerID=8YFLogxK

U2 - 10.1088/1757-899X/612/3/032192

DO - 10.1088/1757-899X/612/3/032192

M3 - Conference article

AN - SCOPUS:85074493690

SN - 1757-8981

VL - 612

JO - IOP Conference Series: Materials Science and Engineering

JF - IOP Conference Series: Materials Science and Engineering

IS - 3

M1 - 032192

T2 - 2019 6th International Conference on Advanced Composite Materials and Manufacturing Engineering, ACMME 2019

Y2 - 22 June 2019 through 23 June 2019

ER -

Binary Fuzz Testing Method Based on LSTM

摘要

访问文件

其它文件与链接

指纹

引用此