publications/presentations/Differential fuzzing, or how to find bugs when (ground) truth isn't real at master · trailofbits/publications

Name	Name	Last commit message	Last commit date
parent directory ..
Differential fuzzing, or_ how to find bugs when (ground) truth isn't real.pdf	Differential fuzzing, or_ how to find bugs when (ground) truth isn't real.pdf
README.md	README.md

Name

Last commit message

Last commit date

Differential fuzzing, or_ how to find bugs when (ground) truth isn't real.pdf

README.md

title

Differential Fuzzing, or: How to Find Bugs When (Ground) Truth Isn't Real

date

2020-03

authors

William Woodruff

conference

OSIRIS Lab

resources

label	path
Slides	Differential fuzzing, or_ how to find bugs when (ground) truth isn't real.pdf

Fuzzing is a well-understood bug finding technique, with known constraints: it requires a notion of "ground truth" for program misbehavior, such as memory access violations, exceptions, misuse of synchronization primitives, and so on. But many programs are written in high-level, managed languages that either lack these sentinels or use them to report all errors, masking "interesting" bugs. How can we find "interesting" bugs in these contexts? With differential fuzzing!

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

FilesExpand file tree

Differential fuzzing, or how to find bugs when (ground) truth isn't real

Directory actions

More options

Directory actions

More options

Latest commit

History

Differential fuzzing, or how to find bugs when (ground) truth isn't real

Folders and files

parent directory

README.md