FirmHunter: State-Aware and Introspection-Driven Grey-Box Fuzzing towards IoT Firmware

FirmHunter: State-Aware and Introspection-Driven Grey-Box Fuzzing towards IoT Firmware

IoT devices are exponentially increasing in all aspects of our lives. Via the web interfaces of IoT devices, attackers can control IoT devices by exploiting their vulnerabilities. In order to guarantee IoT security, testing these IoT devices to detect vulnerabilities is very important. In this work,...

Full description

Bibliographic Details
Main Authors:	Qidi Yin, Xu Zhou, Hangwei Zhang
Format:	Article
Language:	English
Published:	MDPI AG 2021-09-01
Series:	Applied Sciences
Subjects:	IoT firmware fuzzing vulnerability
Online Access:	https://www.mdpi.com/2076-3417/11/19/9094

Similar Items

Optimizing IoT Web Fuzzing by Firmware Infomation Mining
by: Yifei Gao, et al.
Published: (2022-06-01)

FIRMCORN: Vulnerability-Oriented Fuzzing of IoT Firmware via Optimized Virtual Execution
by: Zhijie Gui, et al.
Published: (2020-01-01)

FIRM-COV: High-Coverage Greybox Fuzzing for IoT Firmware via Optimized Process Emulation
by: Juhwan Kim, et al.
Published: (2021-01-01)

Forensic analysis and security assessment of IoT camera firmware for smart homes
by: Akashdeep Bhardwaj, et al.
Published: (2023-12-01)

FuzzDocs: An Automated Security Evaluation Framework for IoT
by: Myoungsung You, et al.
Published: (2022-01-01)

A framework for intelligent IoT firmware compliance testing
by: Mohan Krishna Kagita, et al.
Published: (2021-01-01)

Toward Fast and Scalable Firmware Fuzzing With Dual-Level Peripheral Modeling
by: Eunbi Hwang, et al.
Published: (2021-01-01)

Over-the-Air Firmware Updates for Constrained NB-IoT Devices
by: Farouk Mahfoudhi, et al.
Published: (2022-10-01)

A Blockchain-Based OCF Firmware Update for IoT Devices
by: Elizabeth Nathania Witanto, et al.
Published: (2020-09-01)

A Firmware Code Gene Extraction Technology for IoT Terminal
by: Xinbing Zhu, et al.
Published: (2019-01-01)

IoTSIT: A Static Instrumentation Tool for IoT Devices
by: Chen Chen, et al.
Published: (2020-01-01)

A survey on IoT & embedded device firmware security: architecture, extraction techniques, and vulnerability analysis frameworks
by: Shahid Ul Haq, et al.
Published: (2023-10-01)

Software Implementation of Secure Firmware Update in IoT Concept
by: Lukas Kvarda, et al.
Published: (2017-01-01)

Blockchain-Based Distributed Firmware Update Architecture for IoT Devices
by: Seoyun Choi, et al.
Published: (2020-01-01)

Finding Taint-Style Vulnerabilities in Lua Application of IoT Firmware with Progressive Static Analysis
by: Xixing Li, et al.
Published: (2023-08-01)

Software Implementation of a Secure Firmware Update Solution in an IOT Context
by: Lukas Kvarda, et al.
Published: (2016-01-01)

Embedded Firmware Rehosting System Through Automatic Peripheral Modeling
by: Youngwoo Lee, et al.
Published: (2023-01-01)

IoTFuzzBench: A Pragmatic Benchmarking Framework for Evaluating IoT Black-Box Protocol Fuzzers
by: Yixuan Cheng, et al.
Published: (2023-07-01)

SwitchFuzz: Switch Short-Term Goals in Directed Grey-Box Fuzzing
by: Ziheng He, et al.
Published: (2022-11-01)

Secure Firmware Updates for Constrained IoT Devices Using Open Standards: A Reality Check
by: Koen Zandberg, et al.
Published: (2019-01-01)

SIoTFuzzer: Fuzzing Web Interface in IoT Firmware via Stateful Message Generation
by: Hangwei Zhang, et al.
Published: (2021-04-01)

Blockchain-Based Security Model for LoRaWAN Firmware Updates
by: Njabulo Sakhile Mtetwa, et al.
Published: (2022-01-01)

Fuzzability Testing Framework for Incomplete Firmware Binary
by: Jiwon Jang, et al.
Published: (2023-01-01)

Research on Security Detection Technology for Internet of Things Terminal Based on Firmware Code Genes
by: Xinbing Zhu, et al.
Published: (2020-01-01)

ESRFuzzer: an enhanced fuzzing framework for physical SOHO router devices to discover multi-Type vulnerabilities
by: Yu Zhang, et al.
Published: (2021-07-01)

Secure Firmware Update: Challenges and Solutions
by: Luigi Catuogno, et al.
Published: (2023-06-01)

Framework to perform taint analysis and security assessment of IoT devices in smart cities
by: Akashdeep Bhardwaj, et al.
Published: (2023-12-01)

InsFuzz: Fuzzing Binaries With Location Sensitivity
by: Hanfang Zhang, et al.
Published: (2019-01-01)

The firmware handbook /
by: Ganssle, Jack
Published: (2004)

Large-Scale IoT Devices Firmware Identification Based on Weak Password
by: Dan Yu, et al.
Published: (2020-01-01)

A Review of IoT Firmware Vulnerabilities and Auditing Techniques
by: Taimur Bakhshi, et al.
Published: (2024-01-01)

Penerapan Hypertext Transfer Protocol Web Server untuk Over-The-Air Auto Update Firmware pada Perangkat IoT
by: Iin Karmila Yusri, et al.
Published: (2022-12-01)

Grey-Box Fuzzing Based on Reinforcement Learning for XSS Vulnerabilities
by: Xuyan Song, et al.
Published: (2023-02-01)

The firmware handbook [compact disc] /
by: Ganssle, Jack
Published: (2004)

EQUALIZERS IN THE CATEGORIES FUZZ AND TOPFUZZ
by: Gh. Mirhosseinkhani, et al.
Published: (2020-01-01)

Microprogramming and firmware engineering methods /
by: Habib, Stanley
Published: (1988)

Finding Sands in the Eyes: Vulnerabilities Discovery in IoT With EUFuzzer on Human Machine Interface
by: Jiaping Men, et al.
Published: (2019-01-01)

Fuzzing: a survey
by: Jun Li, et al.
Published: (2018-06-01)

RegFuzz: A Linear Regression-Based Approach for Seed Scheduling in Directed Fuzzing
by: Mingmin Lin, et al.
Published: (2023-08-01)

Hands-on fuzzing of open source project
by: Zhou, Yiqi
Published: (2024)