A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2021; you can also visit the original URL.
The file type is application/pdf
.
Filters
FirmHunter: State-Aware and Introspection-Driven Grey-Box Fuzzing towards IoT Firmware
2021
Applied Sciences
In this work, we present FirmHunter, an automated state-aware and introspection-driven grey-box fuzzer towards Linux-based firmware images on the basis of emulation. ...
We evaluate FirmHunter by emulating and fuzzing eight firmware images including seven routers and one IP camera with a state-of-the-art IoT fuzzer FirmFuzz and a web application scanner ZAP. ...
Acknowledgments: We thank our shepherd Xu Zhou for his care and the anonymous reviewers for their insightful comments on our work.
Conflicts of Interest: The authors declare no conflict of interest. ...
doi:10.3390/app11199094
fatcat:64gki4wf3fhfre4llx2grqpxqe
PS-Fuzz: Efficient Graybox Firmware Fuzzing Based on Protocol State
2021
Journal on Artificial Intelligence
The rise of the Internet of Things (IoT) exposes more and more important embedded devices to the network, which poses a serious threat to people's lives and property. ...
More importantly, the tool utilizes the synchronous execution of the firmware simulator and the firmware program, which can collect and record system information in the event of a crash from multiple dimensions ...
FirmFuzz [16] provides a device-independent automated simulation and dynamic analysis framework for Linux-based firmware images. ...
doi:10.32604/jai.2021.017328
fatcat:xgjdvwef7bgc7obggxepr6d76a
Game of Hide-and-Seek: Exposing Hidden Interfaces in Embedded Web Applications of IoT Devices
2022
Proceedings of the ACM Web Conference 2022
Specifically, IoTScope constructs probing requests through firmware analysis to test physical devices, and narrows down the scope of identification by filtering out irrelevant requests and interfaces through ...
differential analysis. ...
[32] proposed Firmfuzz, an automated device-independent emulation and dynamic analysis framework for Linux-based firmware images. ...
doi:10.1145/3485447.3512213
fatcat:smvdkjtfmza6ximtxnlr3ysqye
Embedded fuzzing: a review of challenges, tools, and solutions
2022
Cybersecurity
Embedded systems also benefit from fuzzing, but the innumerable existing architectures and hardware peripherals complicate the development of general and usable approaches, hence a plethora of tools have ...
Meanwhile, the market of embedded systems, which binds the software execution tightly to the very hardware architecture, has grown at a steady pace, and that pace is anticipated to become yet more sustained ...
FirmFuzz (Srivastava et al. 2019 ) is an automated introspection and analysis framework for IoT firmware. ...
doi:10.1186/s42400-022-00123-y
fatcat:svxasogdcverrkoq2x7igehoo4
A Survey on Recent Advanced Research of CPS Security
2021
Applied Sciences
Finally, we also perform a statistical analysis in terms of paper publication times, author institutes, countries, and sponsors to show the current worldwide CPS security research situation. ...
, smart transportation, smart homes, and general grids); and (3) MADC (Measure, Attack, Defense, and Control) types. ...
FIRMADYNE [140] is an open-source automated dynamic analysis framework for identifying vulnerabilities in Linux-based embedded firmware. ...
doi:10.3390/app11093751
fatcat:fxby2wjzpnchrfshvilxalmptm