Advertisement
Browse Subject Areas
?

Click through the PLOS taxonomy to find articles in your field.

For more information about PLOS Subject Areas, click here.

< Back to Article

Fig 1.

Framework of Ffuzz at a high level scope.

More »

Fig 1 Expand

Fig 2.

Fuzzing agent framework.

More »

Fig 2 Expand

Fig 3.

CFG of motivated code.

More »

Fig 3 Expand

Table 1.

Sample procedure of FPD.

More »

Table 1 Expand

Fig 4.

Framework of full system fuzz testing with S2E assisted.

The red execution trace denotes the path of the current test case. And the yellow branches are the branches that the symbolic execution engine can cover.

More »

Fig 4 Expand

Fig 5.

Pipeline fuzzing framework.

More »

Fig 5 Expand

Table 2.

Execution speed* of FFuzz and vanilla AFL.

More »

Table 2 Expand

Table 3.

Basic blocks and instructions handled by full system and user mode.

More »

Table 3 Expand

Fig 6.

Details of execution speed for FFuzz and AFL in one hour.

Figures are generated by afl-plot from AFL.

More »

Fig 6 Expand

Fig 7.

Paths* covered by FFuzz and AFL in one hours.

*Path refers to the unique path from AFL. Figures are generated by afl-plot from AFL.

More »

Fig 7 Expand

Table 4.

Detail comparison between two different testing modes.

More »

Table 4 Expand

Table 5.

Targets filtered from Juliet benchmark.

More »

Table 5 Expand

Table 6.

Result of real-world device driver testing.

More »

Table 6 Expand

Table 7.

Comparison with AFL, Driller and TriforceAFL.

More »

Table 7 Expand