A comparative study of fuzzing tools on instrumental analysis
In the current times, the continuous evolution of technology and integration of technology into our daily lives is unavoidable. People’s reliance on technology has caused the complexity of software programs to increase continuously. Consequently, the detection, mitigation of software vulnerabilities...
| Autor principal: | |
|---|---|
| Outros Autores: | |
| Formato: | Final Year Project (FYP) |
| Idioma: | English |
| Publicado em: |
Nanyang Technological University
2024
|
| Assuntos: | |
| Acesso em linha: | https://hdl.handle.net/10356/175213 |
| _version_ | 1826121903346024448 |
|---|---|
| author | Huang, Xinyan |
| author2 | Liu Yang |
| author_facet | Liu Yang Huang, Xinyan |
| author_sort | Huang, Xinyan |
| collection | NTU |
| description | In the current times, the continuous evolution of technology and integration of technology into our daily lives is unavoidable. People’s reliance on technology has caused the complexity of software programs to increase continuously. Consequently, the detection, mitigation of software vulnerabilities became a more prevalent issue due to technology’s indispensable role in society today. Due to the complexity of software programs these days, it is almost impossible to remove all vulnerabilities hence causing zero-day vulnerability to remain as a prevalent issue in the field of cybersecurity. This emphasises the importance of structured discovery of pre-existing vulnerabilities and patches against it before it can be exploited to reduce security issues to the minimum.
In this study, we will be performing fuzzing using LibFuzz and American fuzzy Lop Plus (ALF++). The input files will consist of binary files in Unifuzz seed bank and Proof-Of-Concept files submitted by other researchers. The paper will consist of a detailed explanation and process of each step taken in this research done through a period of 10 months on the Program Under Test with the seeds mentioned above. The efficiency of the chosen fuzzing tools will be compared using different metrics to identify the most effective fuzzing tool in the market. |
| first_indexed | 2024-10-01T05:39:46Z |
| format | Final Year Project (FYP) |
| id | ntu-10356/175213 |
| institution | Nanyang Technological University |
| language | English |
| last_indexed | 2024-10-01T05:39:46Z |
| publishDate | 2024 |
| publisher | Nanyang Technological University |
| record_format | dspace |
| spelling | ntu-10356/1752132024-04-26T15:42:54Z A comparative study of fuzzing tools on instrumental analysis Huang, Xinyan Liu Yang School of Computer Science and Engineering yangliu@ntu.edu.sg Computer and Information Science Fuzzing In the current times, the continuous evolution of technology and integration of technology into our daily lives is unavoidable. People’s reliance on technology has caused the complexity of software programs to increase continuously. Consequently, the detection, mitigation of software vulnerabilities became a more prevalent issue due to technology’s indispensable role in society today. Due to the complexity of software programs these days, it is almost impossible to remove all vulnerabilities hence causing zero-day vulnerability to remain as a prevalent issue in the field of cybersecurity. This emphasises the importance of structured discovery of pre-existing vulnerabilities and patches against it before it can be exploited to reduce security issues to the minimum. In this study, we will be performing fuzzing using LibFuzz and American fuzzy Lop Plus (ALF++). The input files will consist of binary files in Unifuzz seed bank and Proof-Of-Concept files submitted by other researchers. The paper will consist of a detailed explanation and process of each step taken in this research done through a period of 10 months on the Program Under Test with the seeds mentioned above. The efficiency of the chosen fuzzing tools will be compared using different metrics to identify the most effective fuzzing tool in the market. Bachelor's degree 2024-04-21T11:13:52Z 2024-04-21T11:13:52Z 2024 Final Year Project (FYP) Huang, X. (2024). A comparative study of fuzzing tools on instrumental analysis. Final Year Project (FYP), Nanyang Technological University, Singapore. https://hdl.handle.net/10356/175213 https://hdl.handle.net/10356/175213 en SCSE23-0674 application/pdf Nanyang Technological University |
| spellingShingle | Computer and Information Science Fuzzing Huang, Xinyan A comparative study of fuzzing tools on instrumental analysis |
| title | A comparative study of fuzzing tools on instrumental analysis |
| title_full | A comparative study of fuzzing tools on instrumental analysis |
| title_fullStr | A comparative study of fuzzing tools on instrumental analysis |
| title_full_unstemmed | A comparative study of fuzzing tools on instrumental analysis |
| title_short | A comparative study of fuzzing tools on instrumental analysis |
| title_sort | comparative study of fuzzing tools on instrumental analysis |
| topic | Computer and Information Science Fuzzing |
| url | https://hdl.handle.net/10356/175213 |
| work_keys_str_mv | AT huangxinyan acomparativestudyoffuzzingtoolsoninstrumentalanalysis AT huangxinyan comparativestudyoffuzzingtoolsoninstrumentalanalysis |