all InfoSec news
Improving AFL++ CmpLog: Tackling the bottlenecks. (arXiv:2211.08357v1 [cs.CR])
Nov. 16, 2022, 2:20 a.m. | Sander Wiebing, Thomas Rooijakkers, Sebastiaan Tesink
cs.CR updates on arXiv.org arxiv.org
The performance of the AFL++ CmpLog feature varies considerably for specific
programs under test (PUTs). In this paper it is demonstrated that the main
cause of the poor performance is low seed entropy, and a lack of deduplication
of magic bytes candidates. An improvement is proposed by mapping comparisons to
input bytes, in order to track which comparisons are controlled by what input
bytes. This mapping is then used to fuzz only the comparison values that are
magic byte candidates …
More from arxiv.org / cs.CR updates on arXiv.org
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Consultant Sécurité SI Gouvernance - Risques - Conformité H/F - Strasbourg
@ Hifield | Strasbourg, France
Lead Security Specialist
@ KBR, Inc. | USA, Dallas, 8121 Lemmon Ave, Suite 550, Texas
Consultant SOC / CERT H/F
@ Hifield | Sèvres, France