出版社:Japan Society for Software Science and Technology
摘要:In recent years, fuzzing has been attracting attention as one of the software testing methods that can be automated and researchers have developed many kinds of fuzzers that perform fuzzing automatically. However, it is difficult for those who have little knowledge of fuzzing to utilize fuzzers for debugging. To address this problem, we developed Fuzz4B which supports the use of the fuzzer. Fuzz4B targets AFL, which is a representative fuzzer that has successful track records. Fuzz4B is not only a front-end, but it also allows developers to reproduce a crash by GDB, minimize a fuzz that causes the crash by delta debugging and localize fault locations from source code. We evaluated its effectiveness by appling Fuzz4B to three open source software systems containing defects.
