Gary's Personal Page

Introduction

SPEC CPU 2006 (documentation here) is a frequently used benchmark in low-level security. The SPEC CPU Integer Benchmarks are listed below:

Add an Extra Target to Fuzzilli

In addition to the existing targets in Fuzzilli's GitHub repository, we can add new targets and make Fuzzilli work with more JavaScript engines.

Fuzzing Real Targets

In this post, I start using Fuzzilli on its currently supported targets and record some background notes on Swift.

Introduction

Fuzzing is a practical, widely deployed technique for finding bugs in complex, real-world programs such as JavaScript engines. Recent research, including Park et al. (2020), has explored this topic and extended it to commercial applications.

To learn how to fuzz a JavaScript engine, I first focused on an open-source project: Fuzzilli. In this post, I record my experience learning Fuzzilli and my attempt to apply it to ChakraCore, the open-source JavaScript engine once used in the Edge browser.

One-Sentence Summary

The authors proposed a new framework that addresses several limitations of PrivKVM and achieves strong experimental results on four real-world datasets.

One-Sentence Summary

The authors proposed Limbo, a framework for automatically discovering defense-aware code-reuse attacks in executables. It addresses a key limitation of current defense-aware attacks: their feasibility depends heavily on the behavior of the attacked program.

One-Sentence Summary

The authors proposed PDiff, a reliable patch-presence testing technique for downstream kernels that addresses two major challenges in existing methods: third-party customization and non-standard build configurations.

One-Sentence Summary

The authors systematize binary disassembly by studying nine popular open-source tools and answering three key questions.

One-Sentence Summary

Where2Change extends Palomba et al.'s work on mining user reviews for information that helps maintain and evolve mobile apps.