Search-Based Concolic Execution for SW Vulnerability Discovery

Rustamov FAYOZBEK  Minjun CHOI  Joobeom YUN  

IEICE TRANSACTIONS on Information and Systems   Vol.E101-D   No.10   pp.2526-2529
Publication Date: 2018/10/01
Online ISSN: 1745-1361
DOI: 10.1587/transinf.2018EDL8052
Type of Manuscript: LETTER
Category: Data Engineering, Web Information Systems
search-based,  concolic execution,  vulnerability,  

Full Text: PDF(621KB)
>>Buy this Article

Huge amounts of software appear nowadays. The more the number of software increases, the more increased software vulnerabilities are. Although some automatic methods have been proposed in order to detect and remove software vulnerabilities, they still require a lot of time so they have a limitation in the real world. To solve this problem, we propose BugHunter which automatically tests a binary file compiled with a C++ compiler. It searches for unsafe API calls and automatically executes to the program block that have an unsafe API call. Also, we showed that BugHunter is more efficient than angr through experiments. As a result, BugHunter is very helpful to find a software vulnerability in a short time.