{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,18]],"date-time":"2025-10-18T00:33:31Z","timestamp":1760747611984,"version":"build-2065373602"},"publisher-location":"Cham","reference-count":47,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783032078933","type":"print"},{"value":"9783032078940","type":"electronic"}],"license":[{"start":{"date-parts":[[2025,10,18]],"date-time":"2025-10-18T00:00:00Z","timestamp":1760745600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,10,18]],"date-time":"2025-10-18T00:00:00Z","timestamp":1760745600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026]]},"DOI":"10.1007\/978-3-032-07894-0_24","type":"book-chapter","created":{"date-parts":[[2025,10,17]],"date-time":"2025-10-17T19:06:55Z","timestamp":1760728015000},"page":"464-483","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["High-Efficiency Fuzzing Technique Using Hooked I\/O System Calls for\u00a0Targeted Input Analysis"],"prefix":"10.1007","author":[{"given":"Wenju","family":"Sun","sequence":"first","affiliation":[]},{"given":"Xi","family":"Xiao","sequence":"additional","affiliation":[]},{"given":"Qiben","family":"Yan","sequence":"additional","affiliation":[]},{"given":"Guangwu","family":"Hu","sequence":"additional","affiliation":[]},{"given":"Qing","family":"Li","sequence":"additional","affiliation":[]},{"given":"Chuan","family":"Chen","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2025,10,18]]},"reference":[{"key":"24_CR1","unstructured":"Chang, O., Metzman, J., Moroz, M., Barbella, M., Arya, A.: Continuous fuzzing for open source software, Oss-fuzz (2016)"},{"key":"24_CR2","unstructured":"Zalewski. American fuzzy lop. http:\/\/lcamtuf.coredump.cx\/afl (2014)"},{"key":"24_CR3","unstructured":"Fioraldi, A., Maier, D., Ei\u00dffeldt, H., Heuse, M.: AFL++: combining incremental steps of fuzzing research. In: 14th USENIX Workshop on Offensive Technologies (WOOT). USENIX Association (2020)"},{"key":"24_CR4","doi-asserted-by":"crossref","unstructured":"B\u00f6hme, M., Pham, V.-T., Roychoudhury, A.: Coverage-based greybox fuzzing as markov chain. In: 2016 ACM SIGSAC Conference on Computer and Communications Security, pp. 1032\u20131043. ACM (2016)","DOI":"10.1145\/2976749.2978428"},{"key":"24_CR5","doi-asserted-by":"crossref","unstructured":"Fioraldi, A., Maier, D.C., Zhang, D., Balzarotti, D.: LibAFL: a framework to build modular and reusable fuzzers. In: 2022 ACM SIGSAC Conference on Computer and Communications Security, pp. 1051\u20131065. ACM (2022)","DOI":"10.1145\/3548606.3560602"},{"key":"24_CR6","unstructured":"Yue, T., et al.: EcoFuzz: adaptive energy-saving greybox fuzzing as a variant of the adversarial multi-armed bandit. In: 29th USENIX Security Symposium (USENIX Security), pp. 2307\u20132324. USENIX Association (2020)"},{"key":"24_CR7","doi-asserted-by":"crossref","unstructured":"Li, Y., Chen, B., Chandramohan, M., Lin, S.-W., Liu, Y., Tiu, A.: Steelix: program-state based binary fuzzing. In: 2017 11th Joint Meeting on Foundations of Software Engineering, pp. 627\u2013637. ACM (2017)","DOI":"10.1145\/3106237.3106295"},{"key":"24_CR8","doi-asserted-by":"crossref","unstructured":"Rawat, S., Jain, V., Kumar, A., Cojocar, L., Giuffrida, C., Bos, H.: VUzzer: application-aware evolutionary fuzzing. In: 24th Network and Distributed System Security Symposium (NDSS), vol.\u00a017, pp. 1\u201314. The Internet Society (2017)","DOI":"10.14722\/ndss.2017.23404"},{"issue":"2","key":"24_CR9","first-page":"912","volume":"19","author":"X Zhu","year":"2020","unstructured":"Zhu, X., et al.: CSI-Fuzz: full-speed edge tracing using coverage sensitive instrumentation. IEEE Trans. Dependable Secure Comput. 19(2), 912\u2013923 (2020)","journal-title":"IEEE Trans. Dependable Secure Comput."},{"key":"24_CR10","doi-asserted-by":"publisher","first-page":"117029","DOI":"10.1109\/ACCESS.2019.2936235","volume":"7","author":"T Yue","year":"2019","unstructured":"Yue, T., Tang, Y., Bo, Yu., Wang, P., Wang, E.: LearnAFL: greybox fuzzing with knowledge enhancement. IEEE Access 7, 117029\u2013117043 (2019)","journal-title":"IEEE Access"},{"key":"24_CR11","doi-asserted-by":"crossref","unstructured":"Gan, S., et al.: CollAFL: path sensitive fuzzing. In: 39th IEEE Symposium on Security and Privacy (SP), pp. 679\u2013696. IEEE (2018)","DOI":"10.1109\/SP.2018.00040"},{"key":"24_CR12","doi-asserted-by":"crossref","unstructured":"Pham, V.-T., et al.: Smart greybox fuzzing. IEEE Transactions on Software Engineering (2019)","DOI":"10.1109\/TSE.2019.2941681"},{"key":"24_CR13","unstructured":"Miller, C.: Fuzz by number: More data about fuzzing than you ever wanted to know. CanSecWest (2008)"},{"key":"24_CR14","doi-asserted-by":"crossref","unstructured":"Herrera, A., et al.: Seed selection for successful fuzzing. In: 30th ACM SIGSOFT International Symposium on Software Testing and Analysis, pp. 230\u2013243. ACM (2021)","DOI":"10.1145\/3460319.3464795"},{"key":"24_CR15","doi-asserted-by":"crossref","unstructured":"She, D., Shah, A., Jana, S.: Effective seed scheduling for fuzzing with graph centrality analysis. In: 43rd IEEE Symposium on Security and Privacy (SP), pp. 2194\u20132211. IEEE (2022)","DOI":"10.1109\/SP46214.2022.9833761"},{"key":"24_CR16","doi-asserted-by":"crossref","unstructured":"B\u00f6hme, M., Man\u00e8s, V.J.M., Cha, S.K.: Boosting fuzzer efficiency: an information theoretic perspective. In: 28th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, pp. 678\u2013689. ACM (2020)","DOI":"10.1145\/3368089.3409748"},{"key":"24_CR17","unstructured":"Lyu, C., et al.: MOPT: optimized mutation scheduling for fuzzers. In: 28th USENIX Security Symposium (USENIX Security), pp. 1949\u20131966. USENIX Association (2019)"},{"key":"24_CR18","doi-asserted-by":"crossref","unstructured":"Lemieux, C., Sen, K.: FairFuzz: a targeted mutation strategy for increasing greybox fuzz testing coverage. In: 33rd ACM\/IEEE International Conference on Automated Software Engineering, pp. 475\u2013485. ACM (2018)","DOI":"10.1145\/3238147.3238176"},{"key":"24_CR19","doi-asserted-by":"crossref","unstructured":"Lopez, J., Babun, L., Aksu, H., Uluagac, A.S.: A survey on function and system call hooking approaches. J. Hardw. Syst. Secur. 1, 114\u2013136 (2017)","DOI":"10.1007\/s41635-017-0013-2"},{"key":"24_CR20","doi-asserted-by":"crossref","unstructured":"Aschermann, C., Schumilo, S., Blazytko, T., Gawlik, R., Holz, T.: REDQUEEN: fuzzing with input-to-state correspondence. In: NDSS, vol. 19, pp. 1\u201315 (2019)","DOI":"10.14722\/ndss.2019.23371"},{"key":"24_CR21","doi-asserted-by":"crossref","unstructured":"Wu, M., et al.: One fuzzing strategy to rule them all. In: 44th International Conference on Software Engineering. ACM (2022)","DOI":"10.1145\/3510003.3510174"},{"key":"24_CR22","doi-asserted-by":"crossref","unstructured":"Lee, M., Cha, S., Oh, H.: Learning seed-adaptive mutation strategies for greybox fuzzing. In: IEEE\/ACM 45th International Conference on Software Engineering (ICSE), pp. 384\u2013396. IEEE (2023)","DOI":"10.1109\/ICSE48619.2023.00043"},{"issue":"3","key":"24_CR23","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3428334","volume":"4","author":"A Hazimeh","year":"2020","unstructured":"Hazimeh, A., Herrera, A., Payer, M.: Magma: a ground-truth fuzzing benchmark. ACM on Measur. Anal. Comput. Syst. 4(3), 1\u201329 (2020)","journal-title":"ACM on Measur. Anal. Comput. Syst."},{"key":"24_CR24","doi-asserted-by":"crossref","unstructured":"Park, S., Xu, W., Yun, I., Jang, D., Kim, T.: Fuzzing JavaScript engines with aspect-preserving mutation. In: 41st IEEE Symposium on Security and Privacy (SP), pp. 1629\u20131642. IEEE (2020)","DOI":"10.1109\/SP40000.2020.00067"},{"key":"24_CR25","volume-title":"FuzzIL: Coverage Guided Fuzzing for JavaScript Engines","author":"S Gro\u00df","year":"2018","unstructured":"Gro\u00df, S.: FuzzIL: Coverage Guided Fuzzing for JavaScript Engines. Department of Informatics, Karlsruhe Institute of Technology (2018)"},{"key":"24_CR26","doi-asserted-by":"crossref","unstructured":"Han, H., Oh, D., Cha, S.K.: CodeAlchemist: semantics-aware code generation to find vulnerabilities in JavaScript engines. In: 26rd Network and Distributed System Security Symposium (NDSS). The Internet Society (2019)","DOI":"10.14722\/ndss.2019.23263"},{"key":"24_CR27","doi-asserted-by":"crossref","unstructured":"Wang, J., Chen, B., Wei, L., Liu, Y.: Superion: grammar-aware greybox fuzzing. In: 2019 IEEE\/ACM 41st International Conference on Software Engineering (ICSE), pp. 724\u2013735. IEEE (2019)","DOI":"10.1109\/ICSE.2019.00081"},{"issue":"1","key":"24_CR28","doi-asserted-by":"publisher","first-page":"18","DOI":"10.1186\/s42400-022-00123-y","volume":"5","author":"M Eisele","year":"2022","unstructured":"Eisele, M., Maugeri, M., Shriwas, R., Huth, C., Bella, G.: Embedded fuzzing: a review of challenges, tools, and solutions. Cybersecurity 5(1), 18 (2022)","journal-title":"Cybersecurity"},{"key":"24_CR29","doi-asserted-by":"crossref","unstructured":"Eisele, M., Ebert, D., Huth, C., Zeller, A.: Fuzzing embedded systems using debug interfaces. In: 32nd ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA). ACM (2023)","DOI":"10.1145\/3597926.3598115"},{"key":"24_CR30","doi-asserted-by":"crossref","unstructured":"Pham, V.-T., B\u00f6hme, M., Roychoudhury, A.: AFLNET: a greybox fuzzer for network protocols. In: 13th International Conference on Software Testing, Validation and Verification (ICST), pp. 460\u2013465. IEEE (2020)","DOI":"10.1109\/ICST46399.2020.00062"},{"key":"24_CR31","doi-asserted-by":"crossref","unstructured":"Schumilo, S., Aschermann, C., Jemmett, A., Abbasi, A., Holz, T.: Nyx-Net: network fuzzing with incremental snapshots. In: 17th European Conference on Computer Systems, pp. 166\u2013180. ACM (2022)","DOI":"10.1145\/3492321.3519591"},{"key":"24_CR32","doi-asserted-by":"crossref","unstructured":"Natella, R., Pham, V.-T.: ProFuzzBench: a benchmark for stateful protocol fuzzing. In: 30th ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA), pp. 662\u2013665. ACM, (2021)","DOI":"10.1145\/3460319.3469077"},{"key":"24_CR33","doi-asserted-by":"crossref","unstructured":"Andronidis, A., Cadar, C.: SnapFuzz: high-throughput fuzzing of network applications. In: 31st ACM SIGSOFT International Symposium on Software Testing and Analysis, pp. 340\u2013351. ACM (2022)","DOI":"10.1145\/3533767.3534376"},{"key":"24_CR34","doi-asserted-by":"crossref","unstructured":"Meng, R., Duck, G.J., Roychoudhury, A.: Program environment fuzzing. In: 2024 on ACM SIGSAC Conference on Computer and Communications Security, pp. 720\u2013734 (2024)","DOI":"10.1145\/3658644.3690229"},{"key":"24_CR35","doi-asserted-by":"crossref","unstructured":"Clause, J., Li, W., Orso, A.: Dytan: a generic dynamic taint analysis framework. In: 2007 International Symposium on Software Testing and Analysis, pp. 196\u2013206. ACM (2007)","DOI":"10.1145\/1273463.1273490"},{"key":"24_CR36","doi-asserted-by":"crossref","unstructured":"Ganesh, V., Leek, T., Rinard, M.: Taint-based directed whitebox fuzzing. In: 31st IEEE International Conference on Software Engineering, pp. 474\u2013484. IEEE (2009)","DOI":"10.1109\/ICSE.2009.5070546"},{"key":"24_CR37","doi-asserted-by":"crossref","unstructured":"Enck, W., et al.: TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones. In: ACM Transactions on Computer Systems (TOCS) (2014)","DOI":"10.1145\/2619091"},{"key":"24_CR38","unstructured":"Haller, I., Slowinska, A., Neugschwandtner, M., Bos, H.: Dowsing for overflows: a guided fuzzer to find buffer boundary violations. In: 22nd USENIX Security Symposium (USENIX Security), pp. 49\u201364. USENIX Association (2013)"},{"key":"24_CR39","doi-asserted-by":"crossref","unstructured":"Portokalidis, G., Slowinska, A., Bos, H.: Argos: an emulator for fingerprinting zero-day attacks for advertised honeypots with automatic signature generation. ACM SIGOPS Oper. Syst. Rev. 40(4) (2006)","DOI":"10.1145\/1218063.1217938"},{"key":"24_CR40","doi-asserted-by":"crossref","unstructured":"You, W., et al.: ProFuzzer: on-the-fly input type probing for better zero-day vulnerability discovery. In: 40th IEEE Symposium on Security and Privacy (SP). IEEE (2019)","DOI":"10.1109\/SP.2019.00057"},{"key":"24_CR41","unstructured":"Gan, S., et al.: GREYONE: data flow sensitive fuzzing. In: 29th USENIX Security Symposium (USENIX Security), pp. 2577\u20132594. USENIX Association (2020)"},{"key":"24_CR42","doi-asserted-by":"crossref","unstructured":"Chen, P., Chen, H.: Angora: efficient fuzzing by principled search. In: 39th IEEE Symposium on Security and Privacy (SP), pp. 711\u2013725. IEEE (2018)","DOI":"10.1109\/SP.2018.00046"},{"key":"24_CR43","doi-asserted-by":"crossref","unstructured":"Zhang, K., Xiao, X., Zhu, X., Sun, R., Xue, M., Wen, S.: Path transitions tell more: optimizing fuzzing schedules via runtime program states. In: 44th International Conference on Software Engineering, pp. 1658\u20131668. ACM (2022)","DOI":"10.1145\/3510003.3510063"},{"key":"24_CR44","doi-asserted-by":"crossref","unstructured":"She, D., Pei, K., Epstein, D., Yang, J., Ray, B., Jana, S.: NEUZZ: efficient fuzzing with neural program smoothing. In: 40th IEEE Symposium on Security and Privacy (SP), pp. 803\u2013817 IEEE","DOI":"10.1109\/SP.2019.00052"},{"key":"24_CR45","unstructured":"Li, Y., et\u00a0al.: UNIFUZZ: a holistic and pragmatic Metrics-Driven platform for evaluating fuzzers. In: 30th USENIX Security Symposium (USENIX Security), pp. 2777\u20132794. USENIX Association (2021)"},{"key":"24_CR46","doi-asserted-by":"crossref","unstructured":"Zhang, K., Zhu, X., Xiao, X., Xue, M., Zhang, C., Wen, S.: ShapFuzz: efficient fuzzing via shapley-guided byte selection. arXiv preprint arXiv:2308.09239 (2023)","DOI":"10.14722\/ndss.2024.23134"},{"key":"24_CR47","doi-asserted-by":"crossref","unstructured":"McKnight, P.E., Najab, J.: Mann-whitney U test. The Corsini encyclopedia of psychology, pp. 1\u20131 (2010)","DOI":"10.1002\/9780470479216.corpsy0524"}],"container-title":["Lecture Notes in Computer Science","Computer Security \u2013 ESORICS 2025"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-032-07894-0_24","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,17]],"date-time":"2025-10-17T19:07:10Z","timestamp":1760728030000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-032-07894-0_24"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,10,18]]},"ISBN":["9783032078933","9783032078940"],"references-count":47,"URL":"https:\/\/doi.org\/10.1007\/978-3-032-07894-0_24","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,10,18]]},"assertion":[{"value":"18 October 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ESORICS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"European Symposium on Research in Computer Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Toulouse","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"France","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"22 September 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"24 September 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"esorics2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.esorics2025.org\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}