A method and system for intelligent fuzz testing based on vulnerability learning

Abstract

The invention discloses an intelligent fuzzy testing method and system based on vulnerability learning. The intelligent fuzzy testing system includes: a data preprocessing module, which reversely analyzes the binary program to be tested to obtain its control flow graph, and analyzes the control flow graph in the control flow graph The feature extraction of each basic block of each basic block is performed to obtain the feature vector of each basic block; the vulnerability prediction module predicts the probability of each function in the program according to the control flow graph of the binary program to be tested; the vulnerability-oriented fuzzing module treats Test the binary program, combine the execution path of an input, the probability of function loopholes in the execution path, and the execution result to calculate the fitness score of the input; use the input with a high fitness score as a seed to perform genetic mutation to generate the next generation of input , the binary program to be tested is cyclically tested until the end of the test. The intelligent fuzzing testing system of the present invention can more efficiently dig out loopholes in binary programs.

Description

technical field [0001] The invention relates to the application field of fuzz testing, in particular to an intelligent fuzz testing method and system based on vulnerability learning. Background technique [0002] Fuzz testing is a software testing technique that detects whether there are loopholes in the program by inputting a large number of unexpected inputs into the program under test and monitoring whether there are exceptions during program execution, such as crashes, assertions, etc. Compared with other vulnerability mining methods, fuzz testing has the characteristics of simplicity, low false positive rate, and good scalability, and is widely used in the actual field of vulnerability mining. According to the known information of the application under test, fuzz testing tools can be divided into white box, black box and gray box fuzz testing. White-box fuzzing is mainly for applications with known source code; black-box fuzzing is mainly for binary applications; gray-...

AI Technical Summary

Problems solved by technology

Current fuzz testing tools are mainly coverage-oriented, hoping to test all parts of the program as much as possible. This method treats all parts of the program as equal, and it is difficult for current fuzz testing tools to achieve high coverage , so fuzz testing tools need to pay more attention to the parts that are more likely to have vulnerabilities, so as to improve the efficiency of fuzz testing for mining vulnerabilities

Images