{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,1]],"date-time":"2026-06-01T12:28:58Z","timestamp":1780316938302,"version":"3.54.1"},"publisher-location":"Singapore","reference-count":18,"publisher":"Springer Nature Singapore","isbn-type":[{"value":"9789819687244","type":"print"},{"value":"9789819687251","type":"electronic"}],"license":[{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-981-96-8725-1_5","type":"book-chapter","created":{"date-parts":[[2025,6,22]],"date-time":"2025-06-22T14:23:07Z","timestamp":1750602187000},"page":"49-61","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Discovering PLC Web Application Vulnerabilities Impacting Physical Control Using LLM-Based Fuzzing"],"prefix":"10.1007","author":[{"given":"Jiaxing","family":"Cheng","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Dongliang","family":"Fang","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Zhongwei","family":"Gu","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Shichao","family":"Lv","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Shuaizong","family":"Si","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Limin","family":"Sun","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2025,6,21]]},"reference":[{"issue":"6","key":"5_CR1","doi-asserted-by":"publisher","first-page":"87","DOI":"10.1145\/1543135.1542486","volume":"44","author":"O Tripp","year":"2009","unstructured":"Tripp, O., Pistoia, M., Fink, S.J., Sridharan, M., Weisman, O.: TAJ: effective taint analysis of web applications. ACM Sigplan Not. 44(6), 87\u201397 (2009)","journal-title":"ACM Sigplan Not."},{"key":"5_CR2","doi-asserted-by":"crossref","unstructured":"Wei, S., Ryder, B.G.: Practical blended taint analysis for JavaScript. In: Proceedings of the 2013 International Symposium on Software Testing and Analysis, pp. 336\u2013346 (2013)","DOI":"10.1145\/2483760.2483788"},{"key":"5_CR3","doi-asserted-by":"crossref","unstructured":"Jovanovic, N., Kruegel, C., Kirda, E.: Pixy: a static analysis tool for detecting web application vulnerabilities. In: 2006 IEEE Symposium on Security and Privacy (S &P\u201906), p. 6. IEEE (2006)","DOI":"10.1109\/SP.2006.29"},{"key":"5_CR4","doi-asserted-by":"crossref","unstructured":"Huang, Y.W., Yu, F., Hang, C., Tsai, C.H., Lee, D.T., Kuo, S.Y.: Securing web application code by static analysis and runtime protection. In: Proceedings of the 13th International Conference on World Wide Web, pp. 40\u201352 (2004)","DOI":"10.1145\/988672.988679"},{"key":"5_CR5","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"152","DOI":"10.1007\/978-3-030-88418-5_8","volume-title":"Computer Security \u2013 ESORICS 2021","author":"O van Rooij","year":"2021","unstructured":"van Rooij, O., Charalambous, M.A., Kaizer, D., Papaevripides, M., Athanasopoulos, E.: webFuzz: grey-box fuzzing for web applications. In: Bertino, E., Shulman, H., Waidner, M. (eds.) ESORICS 2021. LNCS, vol. 12972, pp. 152\u2013172. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-88418-5_8"},{"key":"5_CR6","doi-asserted-by":"crossref","unstructured":"Li, L., Dong, Q., Liu, D., Zhu, L.: The application of fuzzing in web software security vulnerabilities test. In: 2013 International Conference on Information Technology and Applications, pp. 130\u2013133. IEEE (2013)","DOI":"10.1109\/ITA.2013.36"},{"issue":"10","key":"5_CR7","doi-asserted-by":"publisher","first-page":"10068","DOI":"10.1016\/j.jksuci.2022.10.006","volume":"34","author":"A Alsaedi","year":"2022","unstructured":"Alsaedi, A., Alhuzali, A., Bamasag, O.: Effective and scalable black-box fuzzing approach for modern web applications. J. King Saud Univ.-Comput. Inf. Sci. 34(10), 10068\u201310078 (2022)","journal-title":"J. King Saud Univ.-Comput. Inf. Sci."},{"key":"5_CR8","unstructured":"Fioraldi, A., et al.: AFL++: combining incremental steps of fuzzing research. In: 14th USENIX Workshop on Offensive Technologies (WOOT 20) (2020)"},{"key":"5_CR9","unstructured":"ChatGPT. https:\/\/openai.com\/blog\/chatgpt"},{"key":"5_CR10","unstructured":"Jakobsson, A., H\u00e4ggstr\u00f6m, I.: Study of the techniques used by OWASP ZAP for analysis of vulnerabilities in web applications (2022)"},{"key":"5_CR11","unstructured":"Mahajan, A.: Burp Suite Essentials. Packt Publishing Ltd. (2014)"},{"key":"5_CR12","doi-asserted-by":"crossref","unstructured":"Niedermaier, M., Fischer, F., von Bodisco, A.: PropFuzz\u2014an IT-security fuzzing framework for proprietary ICS protocols. In: 2017 International Conference on Applied Electronics (AE). IEEE (2017)","DOI":"10.23919\/AE.2017.8053600"},{"key":"5_CR13","doi-asserted-by":"crossref","unstructured":"Wang, T., Xiong, Q., Gao, H., Peng, Y., Dai, Z., Yi, S.: Design and implementation of fuzzing technology for OPC protocol. In: 2013 Ninth International Conference on Intelligent Information Hiding and Multimedia Signal Processing, pp. 424\u2013428. IEEE (2013)","DOI":"10.1109\/IIH-MSP.2013.112"},{"key":"5_CR14","doi-asserted-by":"crossref","unstructured":"Fang, D., et al.: Ics3fuzzer: a framework for discovering protocol implementation bugs in ics supervisory software by fuzzing. In: Proceedings of the 37th Annual Computer Security Applications Conference, pp. 849\u2013860 (2021)","DOI":"10.1145\/3485832.3488028"},{"key":"5_CR15","unstructured":"Tychalas, D., Benkraouda, H., Maniatakos, M.: ICSFuzz: manipulating I\/Os and repurposing binary code to enable instrumented fuzzing in ICS control applications. In: 30th USENIX Security Symposium (USENIX Security 21), pp. 2847\u20132862 (2021))"},{"key":"5_CR16","doi-asserted-by":"crossref","unstructured":"Bau, J., Bursztein, E., Gupta, D., Mitchell, J.: State of the art: automated black box web application vulnerability testing. In: 2010 IEEE Symposium on Security and Privacy (2010)","DOI":"10.1109\/SP.2010.27"},{"key":"5_CR17","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"111","DOI":"10.1007\/978-3-642-14215-4_7","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"A Doup\u00e9","year":"2010","unstructured":"Doup\u00e9, A., Cova, M., Vigna, G.: Why Johnny can\u2019t pentest: an analysis of black-box web vulnerability scanners. In: Kreibich, C., Jahnke, M. (eds.) DIMVA 2010. LNCS, vol. 6201, pp. 111\u2013131. Springer, Heidelberg (2010). https:\/\/doi.org\/10.1007\/978-3-642-14215-4_7"},{"key":"5_CR18","unstructured":"Doup\u2019 e, A., Cavedon, L., Kruegel, C., Vigna, G.: Enemy of the state: a state-aware black-box web vulnerability scanner. In: 21st USENIX Security Symposium (USENIX Security 12), Bellevue, WA, pp. 523\u2013538. USENIX Association (2012)"}],"container-title":["Lecture Notes in Computer Science","Wireless Artificial Intelligent Computing Systems and Applications"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-981-96-8725-1_5","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,22]],"date-time":"2025-06-22T14:23:11Z","timestamp":1750602191000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-981-96-8725-1_5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025]]},"ISBN":["9789819687244","9789819687251"],"references-count":18,"URL":"https:\/\/doi.org\/10.1007\/978-981-96-8725-1_5","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025]]},"assertion":[{"value":"21 June 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"WASA","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Wireless Artificial Intelligent Computing Systems and Applications","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Tokyo","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Japan","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"24 June 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"26 June 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"wasa2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/wasa-conference.org\/WASA2025\/index.html#","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}