[fuzzing] test case generation and the fuzzing list
dmolnar at eecs.berkeley.edu
dmolnar at eecs.berkeley.edu
Tue Mar 13 02:02:00 CDT 2007
Yes.
I meant to email and thank everyone earlier, but it fell on the floor while starting a new internship. Thank you all for your thoughts. it is still not clear to me what approach will "win," but I find the symbolic execution approach exciting enough to take a chance on pushing it.
You and other list members might also enjoy a new paper by R Majumdar and K Sen called "Hybrid concolic testing." (on Sen's web site). They report on some preliminary experiences with trying to get random testing and symbolic execution to play nice.
Finally, I would encourage people to check out STP, even if you are put off by the results of my paper. I bet people here can find things to do with it that don't require solving 6 megabytes of constraints...
David Molnar
-----Original Message-----
From: Gadi Evron <ge at linuxbox.org>
Subj: [fuzzing] test case generation and the fuzzing list
Date: Mon Mar 12, 2007 7:56 pm
Size: 475 bytes
To: fuzzing at whitestar.linuxbox.org
Interesting paper, and it seems like the fuzzing mailing list helped out a
tad bit. :)
http://www.eecs.berkeley.edu/Pubs/TechRpts/2007/EECS-2007-23.pdf
Gadi.
--
"beepbeep it, i leave work, stop reading sec lists and im still hearing
gadi"
- HD Moore to Gadi Evron on IM, on Gadi's interview on npr, March 2007.
_______________________________________________
fuzzing mailing list
fuzzing at whitestar.linuxbox.org
http://www.whitestar.linuxbox.org/mailman/listinfo/fuzzing
More information about the fuzzing
mailing list