Li Yuekang from NTU Singapore, & Dr. Sheikh Mahbub Habib from Continental present this talk.

Software testing typically requires these three steps:

1. test case generation
2. target program execution
3. execution feedback analysis.

Researchers have been focusing on improving the test case generation and execution feedback analysis while the topic of target program execution is under-studied, because executing the target program seems to be an easy task.

However, through industry practice, they find that target program execution can be challenging for libraries or IoT software.

Therefore, they propose two techniques for emulation based fuzzing on IoT software and automated fuzz driver generation.

They have implemented prototypes for these techniques and used them to find dozens of vulnerabilities in open-source libraries and routers.

This talk was presented at FuzzCon Europe - Automotive Edition 2022.
Learn more about this and more talks at fuzzcon.eu.