Featured image of post 軟體自動化安全檢測技術

軟體自動化安全檢測技術


yuawn/Mediatek-Fuzzing-Workshop

Fuzz Testing

  • Black-box

    • binary only
  • Grey-box

    • utilize some program information to guide fuzzing
  • White-box

    • get a full picture of program
    • e.g, sysbolic

Coverage-Gudided Fuzzing

seed pool -> selsect a seed -> mutation -> run with instrumented binary -> crash

Binary instrumentation

LLVM - ir change *

Sanitizer

https://githum.com/google/sanitizers

ubdefined Behavior sanitizer

memorySanitizer

leak-checjer

Sanitizer - ASAN

heap, stack, global-buffer overflow

paper

使用 Hugo 建立
主題 StackJimmy 設計