LAFuzz: Neural Network for Efficient Fuzzing

Xiajing Wang; Changzhen Hu; Rui Ma; Binbin Li; Xuefei Wang

doi:10.1109/ICTAI50040.2020.00098

LAFuzz: Neural Network for Efficient Fuzzing

Xiajing Wang, Changzhen Hu, Rui Ma, Binbin Li, Xuefei Wang

Beijing Institute of Technology

科研成果: 书/报告/会议事项章节 › 会议稿件 › 同行评审

7 引用（Scopus）

摘要

Fuzzing is a well-known technique for efficiently finding software vulnerabilities. Unfortunately, due to syntax check, even the state-of-The-Art fuzzers are not very efficient at discovering hard-To-Trigger bugs in applications that expect highly structured inputs. Grammar-based fuzzers, while effective, often require expert knowledge and incur significant computational overhead. In this paper, we present LAFuzz, an automated fuzzer that generates high-quality seed inputs, which utilizes a variety of deep neural network model with different setup to efficiently fuzz programs that expect structured or unstructured inputs. We achieve this by combining mutation-based fuzzing and generation-based fuzzing offline. Our evaluation on 8 popular real-world applications demonstrated that LAFuzz-LSTM and LAFuzz-Attention significantly outperform AFL, a state-of-The-Art fuzzer, on most cases both at discovering more crashes and achieving higher code coverage. In total, LAFuzz-LSTM and LAFuzz-Attention can effectively improve the code coverage over AFL by 7.55% and 7.67%; and both fuzzers can consistently discover 30.19% as well as 82.39% more unique crashes. Furthermore, extensive evaluation also showed that LAFuzz provides a great compatibility and expansibility.

源语言	英语
主期刊名	Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020
编辑	Miltos Alamaniotis, Shimei Pan
出版商	IEEE Computer Society
页	603-611
页数	9
ISBN（电子版）	9781728192284
DOI	https://doi.org/10.1109/ICTAI50040.2020.00098
出版状态	已出版 - 11月 2020
活动	32nd IEEE International Conference on Tools with Artificial Intelligence, ICTAI 2020 - Virtual, Baltimore, 美国期限: 9 11月 2020 → 11 11月 2020

出版系列

姓名	Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI
卷	2020-November
ISSN（印刷版）	1082-3409

会议

会议	32nd IEEE International Conference on Tools with Artificial Intelligence, ICTAI 2020
国家/地区	美国
市	Virtual, Baltimore
时期	9/11/20 → 11/11/20

访问文件

10.1109/ICTAI50040.2020.00098

其它文件与链接

链接到 Scopus 的出版物

引用此

Wang, X., Hu, C., Ma, R., Li, B., & Wang, X. (2020). LAFuzz: Neural Network for Efficient Fuzzing. 在 M. Alamaniotis, & S. Pan (编辑), Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020 (页码 603-611). 文章 9288180 (Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI; 卷 2020-November). IEEE Computer Society. https://doi.org/10.1109/ICTAI50040.2020.00098

@inproceedings{b204b17f3fa34ed1b14a92f6180c1de6,

title = "LAFuzz: Neural Network for Efficient Fuzzing",

abstract = "Fuzzing is a well-known technique for efficiently finding software vulnerabilities. Unfortunately, due to syntax check, even the state-of-The-Art fuzzers are not very efficient at discovering hard-To-Trigger bugs in applications that expect highly structured inputs. Grammar-based fuzzers, while effective, often require expert knowledge and incur significant computational overhead. In this paper, we present LAFuzz, an automated fuzzer that generates high-quality seed inputs, which utilizes a variety of deep neural network model with different setup to efficiently fuzz programs that expect structured or unstructured inputs. We achieve this by combining mutation-based fuzzing and generation-based fuzzing offline. Our evaluation on 8 popular real-world applications demonstrated that LAFuzz-LSTM and LAFuzz-Attention significantly outperform AFL, a state-of-The-Art fuzzer, on most cases both at discovering more crashes and achieving higher code coverage. In total, LAFuzz-LSTM and LAFuzz-Attention can effectively improve the code coverage over AFL by 7.55% and 7.67%; and both fuzzers can consistently discover 30.19% as well as 82.39% more unique crashes. Furthermore, extensive evaluation also showed that LAFuzz provides a great compatibility and expansibility.",

keywords = "AFL, Attention, Fuzzing, LSTM",

author = "Xiajing Wang and Changzhen Hu and Rui Ma and Binbin Li and Xuefei Wang",

note = "Publisher Copyright: {\textcopyright} 2020 IEEE.; 32nd IEEE International Conference on Tools with Artificial Intelligence, ICTAI 2020 ; Conference date: 09-11-2020 Through 11-11-2020",

year = "2020",

month = nov,

doi = "10.1109/ICTAI50040.2020.00098",

language = "English",

series = "Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI",

publisher = "IEEE Computer Society",

pages = "603--611",

editor = "Miltos Alamaniotis and Shimei Pan",

booktitle = "Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020",

address = "United States",

}

Wang, X, Hu, C , Ma, R, Li, B & Wang, X 2020, LAFuzz: Neural Network for Efficient Fuzzing. 在 M Alamaniotis & S Pan (编辑), Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020., 9288180, Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI, 卷 2020-November, IEEE Computer Society, 页码 603-611, 32nd IEEE International Conference on Tools with Artificial Intelligence, ICTAI 2020, Virtual, Baltimore, 美国, 9/11/20. https://doi.org/10.1109/ICTAI50040.2020.00098

LAFuzz: Neural Network for Efficient Fuzzing. / Wang, Xiajing; Hu, Changzhen ; Ma, Rui 等.
Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020. 编辑 / Miltos Alamaniotis; Shimei Pan. IEEE Computer Society, 2020. 页码 603-611 9288180 (Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI; 卷 2020-November).

科研成果: 书/报告/会议事项章节 › 会议稿件 › 同行评审

TY - GEN

T1 - LAFuzz

T2 - 32nd IEEE International Conference on Tools with Artificial Intelligence, ICTAI 2020

AU - Wang, Xiajing

AU - Hu, Changzhen

AU - Ma, Rui

AU - Li, Binbin

AU - Wang, Xuefei

PY - 2020/11

Y1 - 2020/11

N2 - Fuzzing is a well-known technique for efficiently finding software vulnerabilities. Unfortunately, due to syntax check, even the state-of-The-Art fuzzers are not very efficient at discovering hard-To-Trigger bugs in applications that expect highly structured inputs. Grammar-based fuzzers, while effective, often require expert knowledge and incur significant computational overhead. In this paper, we present LAFuzz, an automated fuzzer that generates high-quality seed inputs, which utilizes a variety of deep neural network model with different setup to efficiently fuzz programs that expect structured or unstructured inputs. We achieve this by combining mutation-based fuzzing and generation-based fuzzing offline. Our evaluation on 8 popular real-world applications demonstrated that LAFuzz-LSTM and LAFuzz-Attention significantly outperform AFL, a state-of-The-Art fuzzer, on most cases both at discovering more crashes and achieving higher code coverage. In total, LAFuzz-LSTM and LAFuzz-Attention can effectively improve the code coverage over AFL by 7.55% and 7.67%; and both fuzzers can consistently discover 30.19% as well as 82.39% more unique crashes. Furthermore, extensive evaluation also showed that LAFuzz provides a great compatibility and expansibility.

AB - Fuzzing is a well-known technique for efficiently finding software vulnerabilities. Unfortunately, due to syntax check, even the state-of-The-Art fuzzers are not very efficient at discovering hard-To-Trigger bugs in applications that expect highly structured inputs. Grammar-based fuzzers, while effective, often require expert knowledge and incur significant computational overhead. In this paper, we present LAFuzz, an automated fuzzer that generates high-quality seed inputs, which utilizes a variety of deep neural network model with different setup to efficiently fuzz programs that expect structured or unstructured inputs. We achieve this by combining mutation-based fuzzing and generation-based fuzzing offline. Our evaluation on 8 popular real-world applications demonstrated that LAFuzz-LSTM and LAFuzz-Attention significantly outperform AFL, a state-of-The-Art fuzzer, on most cases both at discovering more crashes and achieving higher code coverage. In total, LAFuzz-LSTM and LAFuzz-Attention can effectively improve the code coverage over AFL by 7.55% and 7.67%; and both fuzzers can consistently discover 30.19% as well as 82.39% more unique crashes. Furthermore, extensive evaluation also showed that LAFuzz provides a great compatibility and expansibility.

KW - AFL

KW - Attention

KW - Fuzzing

KW - LSTM

UR - http://www.scopus.com/inward/record.url?scp=85098779180&partnerID=8YFLogxK

U2 - 10.1109/ICTAI50040.2020.00098

DO - 10.1109/ICTAI50040.2020.00098

M3 - Conference contribution

AN - SCOPUS:85098779180

T3 - Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI

SP - 603

EP - 611

BT - Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020

A2 - Alamaniotis, Miltos

A2 - Pan, Shimei

PB - IEEE Computer Society

Y2 - 9 November 2020 through 11 November 2020

ER -

Wang X, Hu C , Ma R, Li B, Wang X. LAFuzz: Neural Network for Efficient Fuzzing. 在 Alamaniotis M, Pan S, 编辑, Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020. IEEE Computer Society. 2020. 页码 603-611. 9288180. (Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI). doi: 10.1109/ICTAI50040.2020.00098

LAFuzz: Neural Network for Efficient Fuzzing

摘要

出版系列

会议

访问文件

其它文件与链接

指纹

引用此