{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,12]],"date-time":"2026-03-12T07:38:39Z","timestamp":1773301119188,"version":"3.50.1"},"publisher-location":"Cham","reference-count":36,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783030429201","type":"print"},{"value":"9783030429218","type":"electronic"}],"license":[{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020]]},"DOI":"10.1007\/978-3-030-42921-8_8","type":"book-chapter","created":{"date-parts":[[2020,4,3]],"date-time":"2020-04-03T15:05:45Z","timestamp":1585926345000},"page":"134-153","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":8,"title":["Suzzer: A Vulnerability-Guided Fuzzer Based on Deep Learning"],"prefix":"10.1007","author":[{"given":"Yuyue","family":"Zhao","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yangyang","family":"Li","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Tengfei","family":"Yang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Haiyong","family":"Xie","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2020,3,13]]},"reference":[{"key":"8_CR1","unstructured":"Wikipedia. Fuzzing (2018). \nhttps:\/\/en.wikipedia.org\/wiki\/Fuzzing\/"},{"key":"8_CR2","unstructured":"Roning, J., et al.: Protos-systematic approach to eliminate software vulnerabilities. Invited presentation at Microsoft Research (2002)"},{"key":"8_CR3","unstructured":"Eddington, M.: Peach fuzzing platform. Peach Fuzzer 34 (2011)"},{"key":"8_CR4","unstructured":"Aitel, D.: An introduction to spike, the Fuzzer creation kit (2002)"},{"key":"8_CR5","doi-asserted-by":"crossref","unstructured":"Yang, X., Chen, Y., Eide, E., et al.: Finding and understanding bugs in C compilers. In: ACM SIGPLAN Notices (2011)","DOI":"10.1145\/1993498.1993532"},{"key":"8_CR6","unstructured":"Zalewski, M.: American fuzzy lop (2017). \nhttp:\/\/lcamtuf.coredump.cx\/afl\/"},{"key":"8_CR7","unstructured":"Google. honggfuzz (2017). \nhttps:\/\/google.github.io\/honggfuzz\/"},{"key":"8_CR8","unstructured":"Caca Labs (2017). \nhttp:\/\/caca.zoy.org\/wiki\/zzuf\/"},{"key":"8_CR9","unstructured":"Chen, Y., et al.: EnFuzz: ensemble fuzzing with seed synchronization among diverse Fuzzers. In: 28th USENIX Security Symposium (USENIX Security 2019) (2019)"},{"key":"8_CR10","doi-asserted-by":"crossref","unstructured":"Rawat, S., et al.: VUzzer: application-aware evolutionary fuzzing. In: NDSS, vol. 17 (2017)","DOI":"10.14722\/ndss.2017.23404"},{"key":"8_CR11","doi-asserted-by":"crossref","unstructured":"Peng, H., Shoshitaishvili, Y., Payer, M.: T-Fuzz: fuzzing by program transformation. In: 2018 IEEE Symposium on Security and Privacy (SP). IEEE (2018)","DOI":"10.1109\/SP.2018.00056"},{"key":"8_CR12","doi-asserted-by":"crossref","unstructured":"Chen, P., Chen, H.: Angora: efficient fuzzing by principled search. In: 2018 IEEE Symposium on Security and Privacy (SP). IEEE (2018)","DOI":"10.1109\/SP.2018.00046"},{"key":"8_CR13","doi-asserted-by":"crossref","unstructured":"Gan, S., et al.: Collafl: path sensitive fuzzing. In: 2018 IEEE Symposium on Security and Privacy (SP). IEEE (2018)","DOI":"10.1109\/SP.2018.00040"},{"issue":"1","key":"8_CR14","doi-asserted-by":"publisher","first-page":"25","DOI":"10.1007\/s10664-011-9190-8","volume":"18","author":"Y Shin","year":"2013","unstructured":"Shin, Y., Williams, L.: Can traditional fault prediction models be used for vulnerability prediction? Empirical Softw. Eng. 18(1), 25\u201359 (2013)","journal-title":"Empirical Softw. Eng."},{"issue":"5","key":"8_CR15","doi-asserted-by":"publisher","first-page":"286","DOI":"10.1145\/1095430.1081753","volume":"30","author":"C Liu","year":"2005","unstructured":"Liu, C., et al.: SOBER: statistical model-based bug localization. ACM SIGSOFT Softw. Eng. Notes 30(5), 286\u2013295 (2005)","journal-title":"ACM SIGSOFT Softw. Eng. Notes"},{"key":"8_CR16","unstructured":"OpenRCE. Sulley fuzzing framework (2015). \nhttps:\/\/github.com\/OpenRCE\/sulley"},{"key":"8_CR17","doi-asserted-by":"crossref","unstructured":"Takanen, A., Demott, J., Miller, C.: Fuzzing for Software Security Testing and Quality Assurance. Artech House (2008)","DOI":"10.1016\/S1353-4858(08)70095-3"},{"key":"8_CR18","unstructured":"Godefroid, P., Levin, M., Molnar, D.: Automated whitebox fuzz testing. In: Network and Distributed System Security Symposium (2008)"},{"key":"8_CR19","doi-asserted-by":"crossref","unstructured":"Ganesh, V., Leek, T., Rinard, M.: Taint-based directed whitebox fuzzing. In: Proceedings of the 31st International Conference on Software Engineering. IEEE Computer Society (2009)","DOI":"10.1109\/ICSE.2009.5070546"},{"key":"8_CR20","unstructured":"Li, Y., et al.: V-Fuzz: vulnerability-oriented evolutionary fuzzing. arXiv preprint \narXiv:1901.01142\n\n (2019)"},{"key":"8_CR21","unstructured":"Li, Z., et al.: SySeVR: a framework for using deep learning to detect software vulnerabilities. arXiv preprint \narXiv:1807.06756\n\n (2018)"},{"key":"8_CR22","doi-asserted-by":"crossref","unstructured":"Li, Z., et al.: VulDeePecker: a deep learning-based system for vulnerability detection. arXiv preprint \narXiv:1801.01681\n\n (2018)","DOI":"10.14722\/ndss.2018.23158"},{"key":"8_CR23","doi-asserted-by":"crossref","unstructured":"Xu, X., et al.: Neural network-based graph embedding for cross-platform binary code similarity detection. In: Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security. ACM (2017)","DOI":"10.1145\/3133956.3134018"},{"key":"8_CR24","doi-asserted-by":"crossref","unstructured":"Zuo, F., et al.: Neural machine translation inspired binary code similarity comparison beyond function pairs. arXiv preprint \narXiv:1808.04706\n\n (2018)","DOI":"10.14722\/ndss.2019.23492"},{"key":"8_CR25","doi-asserted-by":"crossref","unstructured":"Feng, Q., et al.: Scalable graph-based bug search for firmware images. In: Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security. ACM (2016)","DOI":"10.1145\/2976749.2978370"},{"key":"8_CR26","unstructured":"Control-flow graph (2015). \nhttps:\/\/en.wikipedia.org\/wiki\/Control-flow_graph"},{"key":"8_CR27","doi-asserted-by":"crossref","unstructured":"Pewny, J., et al.: Cross-architecture bug search in binary executables. In: 2015 IEEE Symposium on Security and Privacy. IEEE (2015)","DOI":"10.1109\/SP.2015.49"},{"issue":"1","key":"8_CR28","doi-asserted-by":"publisher","first-page":"40","DOI":"10.1109\/TPAMI.2007.250598","volume":"29","author":"S Yan","year":"2007","unstructured":"Yan, S., et al.: Graph embedding and extensions: a general framework for dimensionality reduction. IEEE Trans. Pattern Anal. Mach. Intell. 29(1), 40\u201351 (2007)","journal-title":"IEEE Trans. Pattern Anal. Mach. Intell."},{"key":"8_CR29","unstructured":"Rajpal, M., Blum, W., Singh, R.: Not all bytes are equal: Neural byte sieve for fuzzing. arXiv preprint \narXiv:1711.04596\n\n (2017)"},{"key":"8_CR30","doi-asserted-by":"crossref","unstructured":"Gers, F.A., Schmidhuber, J., Cummins, F.: Learning to forget: continual prediction with LSTM (1999)","DOI":"10.1049\/cp:19991218"},{"key":"8_CR31","unstructured":"Intel. Intel 64 and IA-32 architectures software developer manuals (2018). \nhttps:\/\/software.intel.com\/en-us\/articles\/intel-sdm"},{"key":"8_CR32","unstructured":"Hex-Rays. The IDA pro disassembler and debugger (2015). \nhttps:\/\/www.hex-rays.com\/products\/ida\/"},{"key":"8_CR33","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"155","DOI":"10.1007\/978-3-319-16462-5_12","volume-title":"Provenance and Annotation of Data and Processes","author":"M Stamatogiannakis","year":"2015","unstructured":"Stamatogiannakis, M., Groth, P., Bos, H.: Looking inside the black-box: capturing data provenance using dynamic instrumentation. In: Lud\u00e4scher, B., Plale, B. (eds.) IPAW 2014. LNCS, vol. 8628, pp. 155\u2013167. Springer, Cham (2015). \nhttps:\/\/doi.org\/10.1007\/978-3-319-16462-5_12"},{"issue":"6","key":"8_CR34","doi-asserted-by":"publisher","first-page":"190","DOI":"10.1145\/1064978.1065034","volume":"40","author":"C-K Luk","year":"2005","unstructured":"Luk, C.-K., et al.: Pin: building customized program analysis tools with dynamic instrumentation. ACM SIGPLAN Not. 40(6), 190\u2013200 (2005)","journal-title":"ACM SIGPLAN Not."},{"key":"8_CR35","unstructured":"NVD (2017). \nhttp:\/\/nvd.nist.gov\/"},{"key":"8_CR36","doi-asserted-by":"crossref","unstructured":"Dolan-Gavitt, B., et al.: Lava: large-scale automated vulnerability addition. In: 2016 IEEE Symposium on Security and Privacy (SP). IEEE (2016)","DOI":"10.1109\/SP.2016.15"}],"container-title":["Lecture Notes in Computer Science","Information Security and Cryptology"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-42921-8_8","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,4,3]],"date-time":"2020-04-03T18:12:17Z","timestamp":1585937537000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-42921-8_8"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020]]},"ISBN":["9783030429201","9783030429218"],"references-count":36,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-42921-8_8","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2020]]},"assertion":[{"value":"13 March 2020","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"Inscrypt","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Information Security and Cryptology","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Nanjing","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"China","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2019","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"6 December 2019","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"8 December 2019","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"15","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"cisc2019","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/asclab.nuaa.edu.cn\/inscrypt2019\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}