ItyFuzz: Snapshot-Based Fuzzer for Smart Contract. (arXiv:2306.17135v1 [cs.CR])

Smart contracts are critical financial instruments, and their security is of
utmost importance. However, smart contract programs are difficult to fuzz due
to the persistent blockchain state behind all transactions. Mutating sequences
of transactions are complex and often lead to a suboptimal exploration for both
input and program spaces. In this paper, we introduce a novel snapshot-based
fuzzer ItyFuzz for testing smart contracts. In ItyFuzz, instead of storing
sequences of transactions and mutating from them, we snapshot states and
singleton …

blockchain contract contracts critical financial fuzz fuzzer input persistent program security smart smart contract smart contracts state transactions