{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,16]],"date-time":"2026-06-16T14:19:29Z","timestamp":1781619569341,"version":"3.54.5"},"publisher-location":"Cham","reference-count":37,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783319288642","type":"print"},{"value":"9783319288659","type":"electronic"}],"license":[{"start":{"date-parts":[[2015,1,1]],"date-time":"2015-01-01T00:00:00Z","timestamp":1420070400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2015]]},"DOI":"10.1007\/978-3-319-28865-9_18","type":"book-chapter","created":{"date-parts":[[2016,1,23]],"date-time":"2016-01-23T03:40:02Z","timestamp":1453520402000},"page":"330-347","source":"Crossref","is-referenced-by-count":101,"title":["Pulsar: Stateful Black-Box Fuzzing of Proprietary Network Protocols"],"prefix":"10.1007","author":[{"given":"Hugo","family":"Gascon","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Christian","family":"Wressnegger","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Fabian","family":"Yamaguchi","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Daniel","family":"Arp","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Konrad","family":"Rieck","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","reference":[{"key":"18_CR1","doi-asserted-by":"crossref","unstructured":"Abdelnur, H.J., State, R., Festor, O.: KiF: a stateful SIP fuzzer. In: Proc. of International Conference on Principles, Systems and Applications of IP Telecommunications (IPTCOMM), pp. 47\u201356 (2007)","DOI":"10.1145\/1326304.1326313"},{"key":"18_CR2","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"343","DOI":"10.1007\/11836810_25","volume-title":"Information Security","author":"G Banks","year":"2006","unstructured":"Banks, G., Cova, M., Felmetsger, V., Almeroth, K., Kemmerer, R., Vigna, G.: SNOOZE: toward a stateful NetwOrk prOtocol fuzZEr. In: Katsikas, S.K., L\u00f3pez, J., Backes, M., Gritzalis, S., Preneel, B. (eds.) ISC 2006. LNCS, vol. 4176, pp. 343\u2013358. Springer, Heidelberg (2006)"},{"key":"18_CR3","unstructured":"Beddoe, M.: The protocol informatics project, July 2015. \n                    http:\/\/www.4tphi.net\/~awalters\/PI\/PI.html"},{"key":"18_CR4","unstructured":"Beddoe, M.A.: Network protocol analysis using bioinformatics algorithms. Technical report, McAfee Inc. (2005)"},{"key":"18_CR5","doi-asserted-by":"crossref","unstructured":"Bossert, G., Guih\u00e9ry, F., Hiet, G.: Towards automated protocol reverse engineering using semantic information. In: Proc. of ACM Symposium on Information, Computer and Communications Security (ASIACCS) (2014)","DOI":"10.1145\/2590296.2590346"},{"key":"18_CR6","doi-asserted-by":"crossref","unstructured":"Caballero, J., Yin, H., Liang, Z., Song, D.: Polyglot: automatic extraction of protocol message format using dynamic binary analysis. In: Proc. of ACM Conference on Computer and Communications Security (CCS) (2007)","DOI":"10.1145\/1315245.1315286"},{"key":"18_CR7","doi-asserted-by":"crossref","unstructured":"Cha, S.K., Avgerinos, T., Rebert, A., Brumley, D.: Unleashing mayhem on binary code. In: Proc. of IEEE Symposium on Security and Privacy, pp. 380\u2013394 (2012)","DOI":"10.1109\/SP.2012.31"},{"key":"18_CR8","doi-asserted-by":"crossref","unstructured":"Cho, C.Y., Babi\u0107, D., Shin, E.C.R., Song, D.: Inference and analysis of formal models of botnet command and control protocols. In: Proc. of ACM Conference on Computer and Communications Security (CCS) (2010)","DOI":"10.1145\/1866307.1866355"},{"key":"18_CR9","doi-asserted-by":"crossref","unstructured":"Comparetti, P.M., Wondracek, G., Kruegel, C., Kirda, E.: Prospex: protocol specification extraction. In: Proc. of IEEE Symposium on Security and Privacy (2009)","DOI":"10.1109\/SP.2009.14"},{"key":"18_CR10","unstructured":"Cui, W., Paxson, V., Weaver, N.C., Katz, R.H.: Protocol-independent adaptive replay of application dialog. In: Proc. of Network and Distributed System Security Symposium (NDSS) (2006)"},{"key":"18_CR11","doi-asserted-by":"crossref","unstructured":"Cui, W., Peinado, M., Chen, K., Wang, H.J., Irun-Briz, L.: Tupni: automatic reverse engineering of input formats. In: Proc. of ACM Conference on Computer and Communications Security (CCS) (2008)","DOI":"10.1145\/1455770.1455820"},{"key":"18_CR12","unstructured":"Deja vu Security. Peachfuzzer, July 2015"},{"issue":"3","key":"18_CR13","doi-asserted-by":"publisher","first-page":"40","DOI":"10.1145\/2093548.2093564","volume":"55","author":"P Godefroid","year":"2012","unstructured":"Godefroid, P., Levin, M.Y., Molnar, D.: SAGE: whitebox fuzzing for security testing. Communications of the ACM 55(3), 40\u201344 (2012)","journal-title":"Communications of the ACM"},{"issue":"8","key":"18_CR14","first-page":"239","volume":"10","author":"S Gorbunov","year":"2010","unstructured":"Gorbunov, S., Rosenbloom, A.: AutoFuzz: Automated network protocol fuzzing framework. International Journal of Computer Science and Network Security (IJCSNS) 10(8), 239\u2013245 (2010)","journal-title":"International Journal of Computer Science and Network Security (IJCSNS)"},{"key":"18_CR15","unstructured":"Haller, I., Slowinska, A., Neugschwandtner, M., Bos, H.: Dowsing for overflows: a guided fuzzer to find buffer boundary violations. In: Proc. of USENIX Security Symposium, pp. 49\u201364 (2013)"},{"key":"18_CR16","series-title":"Springer Series in Statistics","doi-asserted-by":"publisher","DOI":"10.1007\/978-0-387-21606-5","volume-title":"The Elements of Statistical Learning: data mining, inference and prediction","author":"T Hastie","year":"2001","unstructured":"Hastie, T., Tibshirani, R., Friedman, J.: The Elements of Statistical Learning: data mining, inference and prediction. Springer Series in Statistics. Springer, New York (2001)"},{"key":"18_CR17","doi-asserted-by":"crossref","unstructured":"Hsu, Y., Shu, G., Lee, D.: A model-based approach to security flaw detection of network protocol implementations. In: Proc. of IEEE International Conference on Network Protocols (ICNP), pp. 114\u2013123 (2008)","DOI":"10.1109\/ICNP.2008.4697030"},{"key":"18_CR18","doi-asserted-by":"crossref","unstructured":"Jang, J., Agrawal, A., Brumley, D.: ReDeBug: finding unpatched code clones in entire os distributions. In: Proc. of IEEE Symposium on Security and Privacy (2012)","DOI":"10.1109\/SP.2012.13"},{"key":"18_CR19","doi-asserted-by":"crossref","unstructured":"Krueger, T., Gascon, H., Kr\u00e4mer, N., Rieck, K.: Learning stateful models for network honeypots. In: Proc. of ACM Workshop on Artificial Intelligence and Security (AISEC), pp. 37\u201348, October 2012","DOI":"10.1145\/2381896.2381904"},{"key":"18_CR20","series-title":"Lecture Notes in Computer Science (Lecture Notes in Artificial Intelligence)","doi-asserted-by":"publisher","first-page":"50","DOI":"10.1007\/978-3-642-19896-0_5","volume-title":"Privacy and Security Issues in Data Mining and Machine Learning","author":"T Krueger","year":"2010","unstructured":"Krueger, T., Kr\u00e4mer, N., Rieck, K.: ASAP: automatic semantics-aware analysis of network payloads. In: Dimitrakakis, C., Gkoulalas-Divanis, A., Mitrokotsa, A., Verykios, V.S., Saygin, Y. (eds.) PSDML 2010. LNCS (LNAI), vol. 6549, pp. 50\u201363. Springer, Heidelberg (2010)"},{"key":"18_CR21","doi-asserted-by":"publisher","first-page":"788","DOI":"10.1038\/44565","volume":"401","author":"D Lee","year":"1999","unstructured":"Lee, D., Seung, H.: Learning the parts of objects by non-negative matrix factorization. Nature 401, 788\u2013791 (1999)","journal-title":"Nature"},{"key":"18_CR22","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"185","DOI":"10.1007\/11856214_10","volume-title":"Recent Advances in Intrusion Detection","author":"C Leita","year":"2006","unstructured":"Leita, C., Dacier, M., Massicotte, F.: Automatic handling of protocol dependencies and reaction to 0-day attacks with ScriptGen based honeypots. In: Zamboni, D., Kruegel, C. (eds.) RAID 2006. LNCS, vol. 4219, pp. 185\u2013205. Springer, Heidelberg (2006)"},{"key":"18_CR23","unstructured":"Leita, C., Mermoud, K., Dacier, M.: Scriptgen: an automated script generation tool for honeyd. In: Proc. of Annual Computer Security Applications Conference (ACSAC) (2005)"},{"key":"18_CR24","unstructured":"Lin, Z., Jiang, X., Xu, D.: Automatic protocol format reverse engineering through context-aware monitored execution. In: Proc. of Network and Distributed System Security Symposium (NDSS) (2008)"},{"key":"18_CR25","unstructured":"Livshits, B., Lam, M.S.: Finding security vulnerabilities in java applications with static analysis. In: Proc. of USENIX Security Symposium (2005)"},{"key":"18_CR26","first-page":"129","volume":"34","author":"EF Moore","year":"1956","unstructured":"Moore, E.F.: Gedanken-experiments on sequential machines. Automata Studies 34, 129\u2013153 (1956)","journal-title":"Automata Studies"},{"key":"18_CR27","unstructured":"Moore, H.: Security flaws in universal plug and play: Unplug. don\u2019t play. Technical report, Rapid 7 (2013)"},{"key":"18_CR28","doi-asserted-by":"crossref","unstructured":"Newsome, J., Brumley, D., Franklin, J.: Replayer: automatic protocol replay by binary analysis. In: Proc. of ACM Conference on Computer and Communications Security (CCS) (2006)","DOI":"10.1145\/1180405.1180444"},{"key":"18_CR29","doi-asserted-by":"publisher","first-page":"358","DOI":"10.1090\/S0002-9947-1953-0053041-6","volume":"74","author":"HG Rice","year":"1953","unstructured":"Rice, H.G.: Classes of recursively enumerable sets and their decision problems. Transactions of the American Mathematical Society 74, 358\u2013366 (1953)","journal-title":"Transactions of the American Mathematical Society"},{"key":"18_CR30","doi-asserted-by":"publisher","first-page":"1","DOI":"10.4204\/EPTCS.80.1","volume":"80","author":"I Schieferdecker","year":"2012","unstructured":"Schieferdecker, I., Grossmann, J., Schneider, M.: Model-based security testing. Electronic Proceedings in Theoretical Computer Science 80, 1\u201312 (2012)","journal-title":"Electronic Proceedings in Theoretical Computer Science"},{"key":"18_CR31","doi-asserted-by":"crossref","unstructured":"Schwartz, E., Avgerinos, T., Brumley, D.: All you ever wanted to know about dynamic taint analysis and forward symbolic execution (but might have been afraid to ask). In: Proc. of IEEE Symposium on Security and Privacy, pp. 317\u2013331 (2010)","DOI":"10.1109\/SP.2010.26"},{"key":"18_CR32","unstructured":"Sutton, M., Greene, A., Amini, P.: Fuzzing: Brute Force Vulnerability Discovery. Addison-Wesley Professional (2007)"},{"key":"18_CR33","series-title":"Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","doi-asserted-by":"publisher","first-page":"415","DOI":"10.1007\/978-3-642-16161-2_24","volume-title":"Security and Privacy in Communication Networks","author":"S Whalen","year":"2010","unstructured":"Whalen, S., Bishop, M., Crutchfield, J.P.: Hidden markov models for automated protocol learning. In: Jajodia, S., Zhou, J. (eds.) SecureComm 2010. LNICST, vol. 50, pp. 415\u2013428. Springer, Heidelberg (2010)"},{"key":"18_CR34","unstructured":"Wondracek, G., Comparetti, P., Kruegel, C., Kirda, E.: Automatic network protocol analysis. In: Proc. of Network and Distributed System Security Symposium (NDSS) (2008)"},{"key":"18_CR35","doi-asserted-by":"crossref","unstructured":"Woo, M., Cha, S.K., Gottlieb, S., Brumley, D.: Scheduling blackbox mutational fuzzing. In: Proc. of ACM Conference on Computer and Communications Security (CCS) (2013)","DOI":"10.1145\/2508859.2516736"},{"key":"18_CR36","doi-asserted-by":"crossref","unstructured":"Yamaguchi, F., Maier, A., Gascon, H., Rieck, K.: Automatic inference of search patterns for taint-style vulnerabilities. In: Proc. of IEEE Symposium on Security and Privacy (S&P), May 2015","DOI":"10.1109\/SP.2015.54"},{"key":"18_CR37","doi-asserted-by":"crossref","unstructured":"Yamaguchi, F., Wressnegger, C., Gascon, H., Rieck, K.: Chucky: exposing missing checks in source code for vulnerability discovery. In: Proc. of ACM Conference on Computer and Communications Security (CCS), pp. 499\u2013510, November 2013","DOI":"10.1145\/2508859.2516665"}],"container-title":["Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","Security and Privacy in Communication Networks"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-28865-9_18","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,6,1]],"date-time":"2019-06-01T07:29:22Z","timestamp":1559374162000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-28865-9_18"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015]]},"ISBN":["9783319288642","9783319288659"],"references-count":37,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-28865-9_18","relation":{},"ISSN":["1867-8211","1867-822X"],"issn-type":[{"value":"1867-8211","type":"print"},{"value":"1867-822X","type":"electronic"}],"subject":[],"published":{"date-parts":[[2015]]}}}