{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,2]],"date-time":"2026-01-02T07:40:02Z","timestamp":1767339602962,"version":"3.28.0"},"reference-count":154,"publisher":"Springer Science and Business Media LLC","issue":"2","license":[{"start":{"date-parts":[[2024,5,23]],"date-time":"2024-05-23T00:00:00Z","timestamp":1716422400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,5,23]],"date-time":"2024-05-23T00:00:00Z","timestamp":1716422400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Autom Softw Eng"],"published-print":{"date-parts":[[2024,11]]},"DOI":"10.1007\/s10515-024-00433-0","type":"journal-article","created":{"date-parts":[[2024,5,23]],"date-time":"2024-05-23T03:34:51Z","timestamp":1716435291000},"update-policy":"http:\/\/dx.doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":4,"title":["A systematic literature review on software security testing using metaheuristics"],"prefix":"10.1007","volume":"31","author":[{"given":"Fatma","family":"Ahsan","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Faisal","family":"Anwer","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,5,23]]},"reference":[{"key":"433_CR1","doi-asserted-by":"crossref","unstructured":"Afshan, S., McMinn, P., Stevenson, M.: Evolving readable string test inputs using a natural language model to reduce human oracle cost. In: 2013 IEEE Sixth International Conference on Software Testing, Verification and Validation, pp. 352\u2013361. IEEE (2013)","DOI":"10.1109\/ICST.2013.11"},{"issue":"6","key":"433_CR2","doi-asserted-by":"crossref","first-page":"957","DOI":"10.1016\/j.infsof.2008.12.005","volume":"51","author":"W Afzal","year":"2009","unstructured":"Afzal, W., Torkar, R., Feldt, R.: A systematic review of search-based testing for non-functional system properties. Inf. Softw. Technol. 51 (6), 957\u2013976 (2009)","journal-title":"Inf. Softw. Technol."},{"key":"433_CR3","doi-asserted-by":"crossref","first-page":"50","DOI":"10.1016\/j.sysarc.2015.11.001","volume":"64","author":"MA Ahmed","year":"2016","unstructured":"Ahmed, M.A., Ali, F.: Multiple-path testing for cross site scripting using genetic algorithms. J. Syst. Architect. 64, 50\u201362 (2016)","journal-title":"J. Syst. Architect."},{"key":"433_CR4","first-page":"207","volume":"2022","author":"F Ahsan","year":"2023","unstructured":"Ahsan, F., Anwer, F.: A critical review on search-based security testing of programs. Comput. Intell. Select Proc. InCITe 2022, 207\u2013225 (2023)","journal-title":"Comput. Intell. Select Proc. InCITe"},{"issue":"2","key":"433_CR6","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1007\/s10664-021-10048-8","volume":"27","author":"H Almulla","year":"2022","unstructured":"Almulla, H., Gay, G.: Learning how to search: generating effective test cases through adaptive fitness function selection. Empir. Softw. Eng. 27 (2), 1\u201362 (2022)","journal-title":"Empir. Softw. Eng."},{"key":"433_CR7","doi-asserted-by":"crossref","unstructured":"Alshahwan, N., Harman, M.: Automated web application testing using search based software engineering. In: 2011 26th IEEE\/ACM International Conference on Automated Software Engineering (ASE 2011), pp. 3\u201312. IEEE (2011)","DOI":"10.1109\/ASE.2011.6100082"},{"key":"433_CR8","doi-asserted-by":"crossref","unstructured":"Alyasiri, H.: Evolving rules for detecting cross-site scripting attacks using genetic programming. In: International Conference on Advances in Cyber Security, pp. 642\u2013656. Springer (2020)","DOI":"10.1007\/978-981-33-6835-4_42"},{"issue":"8","key":"433_CR9","doi-asserted-by":"crossref","first-page":"1978","DOI":"10.1016\/j.jss.2013.02.061","volume":"86","author":"S Anand","year":"2013","unstructured":"Anand, S., Burke, E.K., Chen, T.Y., Clark, J., Cohen, M.B., Grieskamp, W., Harman, M., Harrold, M.J., McMinn, P., Bertolino, A., et al.: An orchestrated survey of methodologies for automated software test case generation. J. Syst. Softw. 86 (8), 1978\u20132001 (2013)","journal-title":"J. Syst. Softw."},{"key":"433_CR10","doi-asserted-by":"crossref","unstructured":"Anas, M., Imam, R., Anwer, F.: Elliptic curve cryptography in cloud security: a survey. In: 2022 12th International Conference on Cloud Computing, Data Science and Engineering (Confluence), pp. 112\u2013117. IEEE (2022)","DOI":"10.1109\/Confluence52989.2022.9734138"},{"key":"433_CR11","doi-asserted-by":"crossref","unstructured":"Andrews, A., Boukhris, S., Elakeili, S.: Fail-safe testing of web applications. In: 2014 23rd Australian Software Engineering Conference, pp. 200\u2013209. IEEE (2014)","DOI":"10.1109\/ASWEC.2014.29"},{"issue":"4","key":"433_CR12","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1007\/s42979-021-00631-7","volume":"2","author":"MS Anjum","year":"2021","unstructured":"Anjum, M.S., Ryan, C.: Seeding grammars in grammatical evolution to improve search-based software testing. SN Comput. Sci. 2 (4), 1\u201319 (2021)","journal-title":"SN Comput. Sci."},{"key":"433_CR13","first-page":"19","volume":"9","author":"F Anwer","year":"2016","unstructured":"Anwer, F., Nazir, M., Mustafa, K.: Testing program for security using symbolic execution and exception injection. Indian J. Sci. Technol. 9, 19 (2016)","journal-title":"Indian J. Sci. Technol."},{"key":"433_CR14","doi-asserted-by":"crossref","unstructured":"Anwer, F., Nazir, M., Mustafa, K.: Safety and security framework for exception handling in concurrent programming. In: 2013 Third International Conference on Advances in Computing and Communications, pp. 308\u2013311. IEEE (2013)","DOI":"10.1109\/ICACC.2013.65"},{"key":"433_CR15","doi-asserted-by":"crossref","unstructured":"Anwer, F., Nazir, M., Mustafa, K.: Automatic testing of inconsistency caused by improper error handling: a safety and security perspective. In: Proceedings of the 2014 International Conference on Information and Communication Technology for Competitive Strategies, pp. 1\u20135 (2014)","DOI":"10.1145\/2677855.2677898"},{"key":"433_CR16","doi-asserted-by":"crossref","unstructured":"Anwer, F., Nazir, M., Mustafa, K.: Security testing. Trends in Software Testing, pp. 35\u201366 (2017)","DOI":"10.1007\/978-981-10-1415-4_3"},{"key":"433_CR17","doi-asserted-by":"crossref","unstructured":"Anwer, F., Nazir, M., Mustafa, K.: Testing program crash based on search based testing and exception injection. In: International Conference on Security & Privacy, pp. 275\u2013285. Springer (2019)","DOI":"10.1007\/978-981-13-7561-3_20"},{"key":"433_CR18","doi-asserted-by":"crossref","first-page":"195","DOI":"10.1016\/j.infsof.2018.05.003","volume":"104","author":"A Arcuri","year":"2018","unstructured":"Arcuri, A.: Test suite generation with the many independent objective (MIO) algorithm. Inf. Softw. Technol. 104, 195\u2013206 (2018)","journal-title":"Inf. Softw. Technol."},{"issue":"1","key":"433_CR19","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3293455","volume":"28","author":"A Arcuri","year":"2019","unstructured":"Arcuri, A.: Restful API automated test case generation with EvoMaster. ACM Trans. Softw. Eng. Methodol. 28 (1), 1\u201337 (2019)","journal-title":"ACM Trans. Softw. Eng. Methodol."},{"issue":"4","key":"433_CR20","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3391533","volume":"29","author":"A Arcuri","year":"2020","unstructured":"Arcuri, A., Galeotti, J.P.: Handling SQL databases in automated system test generation. ACM Trans. Softw. Eng. Methodol. 29 (4), 1\u201331 (2020)","journal-title":"ACM Trans. Softw. Eng. Methodol."},{"issue":"1","key":"433_CR21","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3477271","volume":"31","author":"A Arcuri","year":"2021","unstructured":"Arcuri, A., Galeotti, J.P.: Enhancing search-based testing with testability transformations for existing APIS. ACM Trans. Softw. Eng. Methodol. 31 (1), 1\u201334 (2021)","journal-title":"ACM Trans. Softw. Eng. Methodol."},{"key":"433_CR22","doi-asserted-by":"crossref","unstructured":"Arcuri, A.: Restful API automated test case generation. In: 2017 IEEE International Conference on Software Quality, Reliability and Security (QRS), pp. 9\u201320. IEEE (2017)","DOI":"10.1109\/QRS.2017.11"},{"key":"433_CR23","doi-asserted-by":"crossref","unstructured":"Arcuri, A.: Evomaster: Evolutionary multi-context automated system test generation. In: 2018 IEEE 11th International Conference on Software Testing, Verification and Validation (ICST), pp. 394\u2013397. IEEE (2018a)","DOI":"10.1109\/ICST.2018.00046"},{"issue":"12","key":"433_CR24","doi-asserted-by":"crossref","first-page":"2209","DOI":"10.1016\/j.infsof.2013.08.001","volume":"55","author":"A Avancini","year":"2013","unstructured":"Avancini, A., Ceccato, M.: Comparison and integration of genetic algorithms and dynamic symbolic execution for security testing of cross-site scripting vulnerabilities. Inf. Softw. Technol. 55 (12), 2209\u20132222 (2013)","journal-title":"Inf. Softw. Technol."},{"key":"433_CR25","doi-asserted-by":"crossref","unstructured":"Avancini, A.: Security testing of web applications: a research plan. In: 2012 34th International Conference on Software Engineering (ICSE), pp. 1491\u20131494. IEEE (2012)","DOI":"10.1109\/ICSE.2012.6227054"},{"key":"433_CR26","doi-asserted-by":"crossref","unstructured":"Avancini, A. and Ceccato, M.: Towards security testing with taint analysis and genetic algorithms. In:Proceedings of the 2010 ICSE Workshop on Software Engineering for Secure Systems, pp. 65\u201371 (2010)","DOI":"10.1145\/1809100.1809110"},{"key":"433_CR27","doi-asserted-by":"crossref","unstructured":"Avancini, A., Ceccato, M.: Security testing of web applications: A search-based approach for cross-site scripting vulnerabilities. In: 2011 IEEE 11th International Working Conference on Source Code Analysis and Manipulation, pp. 85\u201394. IEEE (2011)","DOI":"10.1109\/SCAM.2011.7"},{"key":"433_CR28","doi-asserted-by":"crossref","unstructured":"Avancini, A., Ceccato, M.: Grammar based oracle for security testing of web applications. In: 2012 7th International Workshop on Automation of Software Test (AST), pp. 15\u201321. IEEE (2012)","DOI":"10.1109\/IWAST.2012.6228984"},{"key":"433_CR29","doi-asserted-by":"crossref","unstructured":"Aziz, B., Bader, M., Hippolyte, C.: Search-based sql injection attacks testing using genetic programming. In: European Conference on Genetic Programming, pp. 183\u2013198. Springer (2016)","DOI":"10.1007\/978-3-319-30668-1_12"},{"key":"433_CR30","doi-asserted-by":"crossref","first-page":"176","DOI":"10.1016\/j.infsof.2019.06.012","volume":"114","author":"JM Balera","year":"2019","unstructured":"Balera, J.M., de Santiago J\u00fanior, V.A.: A systematic mapping addressing hyper-heuristics within search-based software testing. Inf. Softw. Technol. 114, 176\u2013189 (2019)","journal-title":"Inf. Softw. Technol."},{"key":"433_CR31","doi-asserted-by":"crossref","unstructured":"Baluda, M.: Evose: evolutionary symbolic execution. In: Proceedings of the 6th International Workshop on Automating Test Case Design, Selection and Evaluation, pp. 16\u201319 (2015)","DOI":"10.1145\/2804322.2804325"},{"key":"433_CR32","doi-asserted-by":"crossref","unstructured":"Baresel, A., Pohlheim, H., Sadeghipour, S.: Structural and functional sequence test of dynamic and state-based software with evolutionary algorithms. In: Genetic and Evolutionary Computation Conference, pp. 2428\u20132441. Springer (2003)","DOI":"10.1007\/3-540-45110-2_147"},{"key":"433_CR33","doi-asserted-by":"crossref","unstructured":"Baresel, A., Sthamer, H.: Evolutionary testing of flag conditions. In: Genetic and Evolutionary Computation Conference, pp. 2442\u20132454. Springer (2003)","DOI":"10.1007\/3-540-45110-2_148"},{"key":"433_CR34","doi-asserted-by":"crossref","unstructured":"Bejo, S.\u00a0D., Assefa, B.\u00a0G., Mohapatra, S.\u00a0K.: Backip: Mutation based test data generation using hybrid approach. In: 2021 International Conference on Information and Communication Technology for Development for Africa (ICT4DA), pp. 178\u2013183. IEEE (2021)","DOI":"10.1109\/ICT4DA53266.2021.9672216"},{"key":"433_CR35","doi-asserted-by":"crossref","unstructured":"Benito-Parejo, M., Merayo, M.\u00a0G.: Using genetic algorithms to select test cases for finite state machines with timeouts. In: 2021 IEEE Congress on Evolutionary Computation (CEC), pp. 2403\u20132410. IEEE (2021)","DOI":"10.1109\/CEC45853.2021.9504764"},{"key":"433_CR36","doi-asserted-by":"crossref","unstructured":"Bhattacharya, N., Sakti, A., Antoniol, G., Gu\u00e9h\u00e9neuc, Y.-G., Pesant, G.: Divide-by-zero exception raising via branch coverage. In: International Symposium on Search Based Software Engineering, pp. 204\u2013218. Springer (2011)","DOI":"10.1007\/978-3-642-23716-4_19"},{"issue":"1","key":"433_CR37","doi-asserted-by":"crossref","first-page":"27","DOI":"10.1504\/IJBIC.2019.101152","volume":"14","author":"M Boopathi","year":"2019","unstructured":"Boopathi, M., Sujatha, R., Kumar, C.S., Narasimman, S., Rajan, A.: Markov approach for quantifying the software code coverage using genetic algorithm in software testing. Int. J. Bio-Inspired Comput. 14 (1), 27\u201345 (2019)","journal-title":"Int. J. Bio-Inspired Comput."},{"key":"433_CR38","unstructured":"Bottaci, L.: Instrumenting programs with flag variables for test data search by genetic algorithm. In: Proceedings of the 4th Annual Conference on Genetic and Evolutionary Computation, pp. 1337\u20131342 (2002)"},{"key":"433_CR39","unstructured":"CWE - Common Weakness Enumeration. https:\/\/cwe.mitre.org\/"},{"key":"433_CR40","doi-asserted-by":"crossref","unstructured":"Cao, Y., Hu, C., Li, L.: An approach to generate software test data for a specific path automatically with genetic algorithm. In: 2009 8th International Conference on Reliability, Maintainability and Safety, pp. 888\u2013892. IEEE (2009a)","DOI":"10.1109\/ICRMS.2009.5269962"},{"key":"433_CR41","doi-asserted-by":"crossref","unstructured":"Cao, Y., Hu, C., Li, L.: Search-based multi-paths test data generation for structure-oriented testing. In: Proceedings of the first ACM\/SIGEVO Summit on Genetic and Evolutionary Computation, pp. 25\u201332 (2009b)","DOI":"10.1145\/1543834.1543839"},{"key":"433_CR42","doi-asserted-by":"crossref","unstructured":"Castelein, J., Aniche, M., Soltani, M., Panichella, A., van Deursen, A.: Search-based test data generation for SQL queries. In: Proceedings of the 40th International Conference on Software Engineering, pp. 1220\u20131230 (2018)","DOI":"10.1145\/3180155.3180202"},{"key":"433_CR43","doi-asserted-by":"crossref","unstructured":"Ceccato, M., Nguyen, C.\u00a0D., Appelt, D., Briand, L.\u00a0C.: Sofia: An automated security oracle for black-box testing of SQL-injection vulnerabilities. In: 2016 31st IEEE\/ACM International Conference on Automated Software Engineering (ASE), pp. 167\u2013177. IEEE (2016)","DOI":"10.1145\/2970276.2970343"},{"key":"433_CR44","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1016\/j.infsof.2016.05.003","volume":"77","author":"B-M Chang","year":"2016","unstructured":"Chang, B.-M., Choi, K.: A review on exception analysis. Inf. Softw. Technol. 77, 1\u201316 (2016)","journal-title":"Inf. Softw. Technol."},{"key":"433_CR45","doi-asserted-by":"crossref","unstructured":"Charmchi, M. R.\u00a0H., Cami, B.\u00a0R.: Paths-oriented test data generation using genetic algorithm. In: 2021 12th International Conference on Information and Knowledge Technology (IKT), pp. 157\u2013162. IEEE (2021)","DOI":"10.1109\/IKT54664.2021.9685262"},{"key":"433_CR46","unstructured":"Costa, G., Valenza, A.: Why Charles can pen-test: an evolutionary approach to vulnerability testing (2020). arXiv preprint https:\/\/arxiv.org\/abs\/2011.13213"},{"key":"433_CR47","doi-asserted-by":"crossref","unstructured":"Cui, B., Liang, X., Wang, J.: The study on integer overflow vulnerability detection in binary executables based upon genetic algorithm. In: Foundations of Intelligent Systems, pp. 259\u2013266. Springer (2011)","DOI":"10.1007\/978-3-642-25664-6_30"},{"key":"433_CR48","doi-asserted-by":"crossref","unstructured":"Dass, S., Namin, A.\u00a0S.: Evolutionary algorithms for vulnerability coverage. In: 2020 IEEE 44th Annual Computers, Software, and Applications Conference (COMPSAC), pp. 1795\u20131801. IEEE (2020a)","DOI":"10.1109\/COMPSAC48688.2020.00049"},{"key":"433_CR49","unstructured":"Dass, S., Namin, A.\u00a0S.: Vulnerability coverage as an adequacy testing criterion. arXiv preprinthttps:\/\/arxiv.org\/abs\/2006.08606 (2020b)"},{"key":"433_CR50","doi-asserted-by":"crossref","unstructured":"Dass, S., Namin, A.\u00a0S.: Vulnerability coverage for adequacy security testing. In: Proceedings of the 35th Annual ACM Symposium on Applied Computing, pp. 540\u2013543 (2020c)","DOI":"10.1145\/3341105.3374099"},{"key":"433_CR51","unstructured":"Dass, S., Namin, A.\u00a0S.: Vulnerability coverage for secure configuration (2020d). arXiv preprint https:\/\/arxiv.org\/abs\/2006.08604"},{"issue":"2","key":"433_CR5","doi-asserted-by":"crossref","first-page":"133","DOI":"10.1016\/j.aei.2006.11.006","volume":"21","author":"JC de Almeida Biolchini","year":"2007","unstructured":"de Almeida Biolchini, J.C., Mian, P.G., Natali, A.C.C., Conte, T.U., Travassos, G.H.: Scientific research ontology to support systematic review in software engineering. Adv. Eng. Inform. 21 (2), 133\u2013151 (2007)","journal-title":"Adv. Eng. Inform."},{"key":"433_CR52","unstructured":"Del\u00a0Grosso, C., Antoniol, G., Di\u00a0Penta, M.: An evolutionary testing approach to detect buffer overflow. In: Student Paper Proceedings of the International Symposium of Software Reliability Engineering (ISSRE), St. Malo, France. Citeseer (2004)"},{"key":"433_CR53","doi-asserted-by":"crossref","unstructured":"Del\u00a0Grosso, C., Antoniol, G., Di\u00a0Penta, M., Galinier, P., Merlo, E.: Improving network applications security: a new heuristic to generate stress testing data. In: Proceedings of the 7th Annual Conference on Genetic and Evolutionary Computation, pp. 1037\u20131043 (2005)","DOI":"10.1145\/1068009.1068185"},{"key":"433_CR154","doi-asserted-by":"crossref","unstructured":"de\u00a0Lima, D.\u00a0F., Albuquerque, D., Dantas\u00a0Filho, E., Perkusich, M., Perkusich, A.: Integrating reinforcement learning in software testing automation: a promising approach. In: Anais do III Workshop Brasileiro de Engenharia de Software Inteligente, pp. 39\u201341. SBC (2023)","DOI":"10.5753\/ise.2023.235976"},{"key":"433_CR54","doi-asserted-by":"crossref","unstructured":"Duchene, F., Groz, R., Rawat, S., Richier, J.-L.: Xss vulnerability detection using model inference assisted evolutionary fuzzing. In:2012 IEEE Fifth International Conference on Software Testing, Verification and Validation, pp. 815\u2013817. IEEE (2012)","DOI":"10.1109\/ICST.2012.181"},{"key":"433_CR55","doi-asserted-by":"crossref","unstructured":"Duchene, F., Rawat, S., Richier, J.-L., Groz, R.: Kameleonfuzz: evolutionary fuzzing for black-box XSS detection. In: Proceedings of the 4th ACM Conference on Data and Application Security and Privacy, pp. 37\u201348 (2014)","DOI":"10.1145\/2557547.2557550"},{"key":"433_CR56","doi-asserted-by":"crossref","unstructured":"Eberlein, M., Noller, Y., Vogel, T., Grunske, L.: Evolutionary grammar-based fuzzing. In: International Symposium on Search Based Software Engineering, pp. 105\u2013120. Springer (2020)","DOI":"10.1007\/978-3-030-59762-7_8"},{"key":"433_CR57","doi-asserted-by":"crossref","first-page":"82","DOI":"10.1016\/j.jss.2015.04.066","volume":"106","author":"F Ebert","year":"2015","unstructured":"Ebert, F., Castor, F., Serebrenik, A.: An exploratory study on exception handling bugs in java programs. J. Syst. Softw. 106, 82\u2013101 (2015)","journal-title":"J. Syst. Softw."},{"key":"433_CR58","doi-asserted-by":"crossref","unstructured":"Elyasov, A., Prasetya, I.\u00a0S., Hage, J.: Search-based test data generation for Javascript functions that interact with the dom. In:2018 IEEE 29th International Symposium on Software Reliability Engineering (ISSRE), pp. 88\u201399. IEEE (2018)","DOI":"10.1109\/ISSRE.2018.00020"},{"key":"433_CR59","doi-asserted-by":"crossref","DOI":"10.1016\/j.eswa.2021.115446","volume":"183","author":"M Esnaashari","year":"2021","unstructured":"Esnaashari, M., Damia, A.H.: Automation of software test data generation using genetic algorithm and reinforcement learning. Expert Syst. Appl. 183, 115446 (2021)","journal-title":"Expert Syst. Appl."},{"issue":"3","key":"433_CR60","doi-asserted-by":"crossref","first-page":"611","DOI":"10.1007\/s10664-013-9288-2","volume":"20","author":"G Fraser","year":"2015","unstructured":"Fraser, G., Arcuri, A.: 1600 faults in 100 projects: automatically finding faults while achieving high coverage with EvoSuite. Empir. Softw. Eng. 20 (3), 611\u2013639 (2015)","journal-title":"Empir. Softw. Eng."},{"key":"433_CR61","doi-asserted-by":"crossref","unstructured":"Fraser, G., Arcuri, A.: Evosuite: automatic test suite generation for object-oriented software. In: Proceedings of the 19th ACM SIGSOFT Symposium and the 13th European Conference on Foundations of Software Engineering, pp. 416\u2013419 (2011)","DOI":"10.1145\/2025113.2025179"},{"key":"433_CR62","doi-asserted-by":"crossref","unstructured":"Gan, J.-M., Ling, H.-Y., Leau, Y.-B.: A review on detection of cross-site scripting attacks (XSS) in web security. In: Advances in Cyber Security: Second International Conference, ACeS 2020, Penang, Malaysia, December 8\u20139, 2020, Revised Selected Papers 2, pp. 685\u2013709. Springer (2021)","DOI":"10.1007\/978-981-33-6835-4_45"},{"key":"433_CR63","doi-asserted-by":"crossref","unstructured":"Gao, H., Feng, B., Zhu, L.: A kind of saaga hybrid meta-heuristic algorithm for the automatic test data generation. In: 2005 International Conference on Neural Networks and Brain, Vol.\u00a01, pp. 111\u2013114. IEEE (2005)","DOI":"10.1109\/ICNNB.2005.1614578"},{"issue":"10","key":"433_CR64","doi-asserted-by":"crossref","first-page":"3125","DOI":"10.1016\/j.cor.2007.01.013","volume":"35","author":"C Del Grosso","year":"2008","unstructured":"Del Grosso, C., Antoniol, G., Merlo, E., Galinier, P.: Detecting buffer overflow via automatic test input data generation. Comput. Oper. Res. 35 (10), 3125\u20133143 (2008)","journal-title":"Comput. Oper. Res."},{"key":"433_CR65","unstructured":"Harman, M., Hu, L., Hierons, R.\u00a0M., Baresel, A., Sthamer, H.: Improving evolutionary testing by flag removal. In: GECCO, pp. 1359\u20131366. Citeseer (2002)"},{"key":"433_CR66","doi-asserted-by":"crossref","unstructured":"Havrikov, N., H\u00f6schele, M., Galeotti, J.\u00a0P., Zeller, A.: Xmlmate: Evolutionary xml test generation. In: Proceedings of the 22nd ACM SIGSOFT International Symposium on Foundations of Software Engineering, pp. 719\u2013722 (2014)","DOI":"10.1145\/2635868.2661666"},{"key":"433_CR67","doi-asserted-by":"crossref","unstructured":"Htay, K.\u00a0M., Othman, R.\u00a0R., Amir, A., Zakaria, H.\u00a0L., Ramli, N.: A pairwise t-way test suite generation strategy using gravitational search algorithm. In: 2021 International Conference on Artificial Intelligence and Computer Science Technology (ICAICST), pp. 7\u201312. IEEE (2021)","DOI":"10.1109\/ICAICST53116.2021.9497823"},{"issue":"30","key":"433_CR68","first-page":"1","volume":"8","author":"I Hydara","year":"2015","unstructured":"Hydara, I., Sultan, A.B.M., Zulzalil, H., Admodisastro, N.: Cross-site scripting detection based on an enhanced genetic algorithm. Indian J. Sci. Technol. 8 (30), 1\u20137 (2015)","journal-title":"Indian J. Sci. Technol."},{"key":"433_CR69","doi-asserted-by":"crossref","first-page":"170","DOI":"10.1016\/j.infsof.2014.07.010","volume":"58","author":"I Hydara","year":"2015","unstructured":"Hydara, I., Sultan, A.B.M., Zulzalil, H., Admodisastro, N.: Current state of research on cross-site scripting (XSS)-a systematic literature review. Inf. Softw. Technol. 58, 170\u2013186 (2015)","journal-title":"Inf. Softw. Technol."},{"key":"433_CR70","doi-asserted-by":"crossref","unstructured":"Hydara, I., Sultan, A. B.\u00a0M., Zulzalil, H., Admodisastro, N.: An approach for cross-site scripting detection and removal based on genetic algorithms. In: The Ninth International Conference on Software Engineering Advances ICSEA (2014)","DOI":"10.17485\/ijst\/2015\/v8i30\/86055"},{"key":"433_CR71","doi-asserted-by":"crossref","unstructured":"Iannone, E., Di\u00a0Nucci, D., Sabetta, A., De\u00a0Lucia, A.: Toward automated exploit generation for known vulnerabilities in open-source libraries. In: 2021 IEEE\/ACM 29th International Conference on Program Comprehension (ICPC), pp. 396\u2013400. IEEE (2021)","DOI":"10.1109\/ICPC52881.2021.00046"},{"issue":"5","key":"433_CR72","first-page":"2645","volume":"14","author":"R Imam","year":"2022","unstructured":"Imam, R., Anwer, F., Nadeem, M.: An effective and enhanced RSA based public key encryption scheme (XRSA). Int. J. Inf. Technol. 14 (5), 2645\u20132656 (2022)","journal-title":"Int. J. Inf. Technol."},{"key":"433_CR73","doi-asserted-by":"crossref","unstructured":"Imam, R., Anwer, F.: An empirical study of secure and complex variants of RSA scheme. In: Cyber Security, Privacy and Networking, pp. 185\u2013196. Springer (2022)","DOI":"10.1007\/978-981-16-8664-1_17"},{"key":"433_CR74","doi-asserted-by":"crossref","unstructured":"Imam, R., Areeb, Q.\u00a0M., Alturki, A., Anwer, F.: Systematic and critical review of RSA based public key cryptographic schemes: past and present status. IEEE Access (2021)","DOI":"10.1109\/ACCESS.2021.3129224"},{"key":"433_CR75","doi-asserted-by":"crossref","unstructured":"Imam, R., Kumar, K., Raza, S.\u00a0M., Sadaf, R., Anwer, F., Fatima, N., Nadeem, M., Abbas, M., Rahman, O.: A systematic literature review of attribute based encryption in health services. J. King Saud Univ.-Comput. Inf. Sci. (2022b)","DOI":"10.1016\/j.jksuci.2022.06.018"},{"issue":"4","key":"433_CR76","doi-asserted-by":"crossref","first-page":"335","DOI":"10.1109\/TSE.2017.2778711","volume":"45","author":"S Jan","year":"2017","unstructured":"Jan, S., Panichella, A., Arcuri, A., Briand, L.: Automatic generation of tests to exploit xml injection vulnerabilities in web applications. IEEE Trans. Softw. Eng. 45 (4), 335\u2013362 (2017)","journal-title":"IEEE Trans. Softw. Eng."},{"issue":"6","key":"433_CR77","doi-asserted-by":"crossref","first-page":"3696","DOI":"10.1007\/s10664-019-09707-8","volume":"24","author":"S Jan","year":"2019","unstructured":"Jan, S., Panichella, A., Arcuri, A., Briand, L.: Search-based multi-vulnerability testing of xml injections in web applications. Empir. Softw. Eng. 24 (6), 3696\u20133729 (2019)","journal-title":"Empir. Softw. Eng."},{"key":"433_CR78","doi-asserted-by":"crossref","unstructured":"Jan, S., Nguyen, C.\u00a0D., Arcuri, A., Briand, L.: A search-based testing approach for xml injection vulnerabilities in web applications. In: 2017 IEEE International Conference on Software Testing, Verification and Validation (ICST), pp. 356\u2013366. IEEE (2017a)","DOI":"10.1109\/ICST.2017.39"},{"key":"433_CR79","doi-asserted-by":"crossref","unstructured":"Jawed, M.\u00a0S., Sajid, M.: Xecryptoga: a metaheuristic algorithm-based block cipher to enhance the security goals. Evolving Systems, pp. 1\u201322 (2022)","DOI":"10.1007\/s12530-022-09462-0"},{"key":"433_CR80","doi-asserted-by":"crossref","unstructured":"Kayacik, H.\u00a0G., Heywood, M., Zincir-Heywood, N.: On evolving buffer overflow attacks using genetic programming. In: Proceedings of the 8th Annual Conference on Genetic and Evolutionary Computation, pp. 1667\u20131674 (2006)","DOI":"10.1145\/1143997.1144271"},{"key":"433_CR81","unstructured":"Kayacik, H.\u00a0G., Zincir-Heywood, A.\u00a0N., Heywood, M.: Evolving successful stack overflow attacks for vulnerability testing. In: 21st Annual Computer Security Applications Conference (ACSAC\u201905), p. 8. IEEE (2005)"},{"issue":"8","key":"433_CR82","doi-asserted-by":"crossref","first-page":"4179","DOI":"10.1007\/s13369-017-2830-6","volume":"43","author":"M Khanna","year":"2018","unstructured":"Khanna, M., Chauhan, N., Sharma, D., Toofani, A., Chaudhary, A.: Search for prioritized test cases in multi-objective environment during web application testing. Arab. J. Sci. Eng. 43 (8), 4179\u20134201 (2018)","journal-title":"Arab. J. Sci. Eng."},{"issue":"12","key":"433_CR83","doi-asserted-by":"crossref","first-page":"9143","DOI":"10.1007\/s00500-019-04444-y","volume":"24","author":"M Khari","year":"2020","unstructured":"Khari, M., Sinha, A., Verdu, E., Crespo, R.G.: Performance analysis of six meta-heuristic algorithms over automated test suite generation for path coverage-based optimization. Soft. Comput. 24 (12), 9143\u20139160 (2020)","journal-title":"Soft. Comput."},{"key":"433_CR84","doi-asserted-by":"crossref","unstructured":"Khari, M., Vaishali, Kumar, M.: Search-based secure software testing: a survey. In: Software Engineering: Proceedings of CSI 2015, pp. 375\u2013381. Springer (2019)","DOI":"10.1007\/978-981-10-8848-3_35"},{"key":"433_CR85","doi-asserted-by":"crossref","unstructured":"Khor, S., Grogono, P.: Using a genetic algorithm and formal concept analysis to generate branch coverage test data automatically. In: Proceedings 19th International Conference on Automated Software Engineering, 2004, pp. 346\u2013349. IEEE (2004)","DOI":"10.1109\/ASE.2004.1342761"},{"key":"433_CR86","unstructured":"Kitchenham, B., Charters, S.: Guidelines for performing systematic literature reviews in software engineering (2007)"},{"key":"433_CR87","doi-asserted-by":"crossref","unstructured":"Kumar, A., Nadeem, M., Banka, H.: Nature inspired optimization algorithms: a comprehensive overview. Evol. Syst., pp. 1\u201316 (2022)","DOI":"10.1007\/s12530-022-09432-6"},{"key":"433_CR88","doi-asserted-by":"crossref","unstructured":"Lin, Y., Ong, Y.\u00a0S., Sun, J., Fraser, G., Dong, J.\u00a0S.: Graph-based seed object synthesis for search-based unit testing. In: Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, pp. 1068\u20131080 (2021)","DOI":"10.1145\/3468264.3468619"},{"key":"433_CR89","doi-asserted-by":"crossref","unstructured":"Lin, Y., Sun, J., Fraser, G., Xiu, Z., Liu, T., Dong, J.\u00a0S.: Recovering fitness gradients for interprocedural boolean flags in search-based testing. In: Proceedings of the 29th ACM SIGSOFT International Symposium on Software Testing and Analysis, pp. 440\u2013451 (2020)","DOI":"10.1145\/3395363.3397358"},{"key":"433_CR90","doi-asserted-by":"crossref","unstructured":"Liu, G.-H., Wu, G., Tao, Z., Shuai, J.-M., Tang, Z.-C.: Vulnerability analysis for x86 executables using genetic algorithm and fuzzing. In: 2008 Third International Conference on Convergence and Hybrid Information Technology, vol.\u00a02, pp. 491\u2013497. IEEE (2008)","DOI":"10.1109\/ICCIT.2008.9"},{"key":"433_CR91","doi-asserted-by":"crossref","unstructured":"Liu, M., Li, K., Chen, T.: Security testing of web applications: a search-based approach for detecting SQL injection vulnerabilities. In: Proceedings of the Genetic and Evolutionary Computation Conference Companion, pp. 417\u2013418 (2019)","DOI":"10.1145\/3319619.3322026"},{"key":"433_CR92","doi-asserted-by":"crossref","unstructured":"Luo, Y.: Sqli-fuzzer: A SQL injection vulnerability discovery framework based on machine learning. In: 2021 IEEE 21st International Conference on Communication Technology (ICCT), pp. 846\u2013851. IEEE (2021)","DOI":"10.1109\/ICCT52962.2021.9657925"},{"key":"433_CR93","doi-asserted-by":"crossref","unstructured":"L\u00fcdtke, S., Kraus, R., Barakat, R., Schneider, M.\u00a0A.: Attack-based automation of security testing for IoT applications with genetic algorithms and fuzzing. In: 2021 IEEE 21st International Conference on Software Quality, Reliability and Security Companion (QRS-C), pp. 92\u2013100. IEEE (2021)","DOI":"10.1109\/QRS-C55045.2021.00023"},{"issue":"3","key":"433_CR94","doi-asserted-by":"crossref","first-page":"687","DOI":"10.1007\/s10489-017-1003-3","volume":"48","author":"M Mann","year":"2018","unstructured":"Mann, M., Tomar, P., Sangwan, O.P.: Bio-inspired metaheuristics: evolving and prioritizing software test data. Appl. Intell. 48 (3), 687\u2013702 (2018)","journal-title":"Appl. Intell."},{"issue":"3","key":"433_CR95","doi-asserted-by":"crossref","first-page":"315","DOI":"10.1016\/j.asoc.2004.08.004","volume":"5","author":"T Mantere","year":"2005","unstructured":"Mantere, T., Alander, J.T.: Evolutionary software engineering, a review. Appl. Soft Comput. 5 (3), 315\u2013331 (2005)","journal-title":"Appl. Soft Comput."},{"key":"433_CR96","doi-asserted-by":"crossref","unstructured":"Man\u00e8s, V.\u00a0J., Kim, S., Cha, S.\u00a0K.: Ankou: guiding grey-box fuzzing towards combinatorial difference. In: Proceedings of the ACM\/IEEE 42nd International Conference on Software Engineering, pp. 1024\u20131036 (2020)","DOI":"10.1145\/3377811.3380421"},{"issue":"1","key":"433_CR97","doi-asserted-by":"crossref","first-page":"199","DOI":"10.1007\/s00521-013-1474-z","volume":"25","author":"C Mao","year":"2014","unstructured":"Mao, C.: Harmony search-based test data generation for branch coverage in software structural testing. Neural Comput. Appl. 25 (1), 199\u2013216 (2014)","journal-title":"Neural Comput. Appl."},{"key":"433_CR98","doi-asserted-by":"crossref","unstructured":"Mao, C., Wen, L., Chen, T.\u00a0Y.: Adaptive random test case generation based on multi-objective evolutionary search. In: 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), pp. 46\u201353. IEEE (2020)","DOI":"10.1109\/TrustCom50675.2020.00020"},{"key":"433_CR99","doi-asserted-by":"crossref","unstructured":"Marashdeh, Z., Suwais, K., Alia, M.: A survey on SQL injection attack: Detection and challenges. In: 2021 International Conference on Information Technology (ICIT), pp. 957\u2013962. IEEE (2021)","DOI":"10.1109\/ICIT52682.2021.9491117"},{"key":"433_CR100","doi-asserted-by":"crossref","unstructured":"Marashdih, A.\u00a0W., Zaaba, Z.\u00a0F.: Detection and removing cross site scripting vulnerability in PHP web application. In:2017 International Conference on Promising Electronic Technologies (ICPET), pp. 26\u201331. IEEE (2017)","DOI":"10.1109\/ICPET.2017.11"},{"key":"433_CR101","doi-asserted-by":"crossref","unstructured":"Marashdih, A.\u00a0W., Zaaba, Z.\u00a0F., Omer, H.\u00a0K.: Web security: detection of cross site scripting in PHP web application using genetic algorithm. Int. J. Adv. Comput. Sci. Appl. (IJACSA) 8 (5) (2017)","DOI":"10.14569\/IJACSA.2017.080509"},{"issue":"3","key":"433_CR102","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3491038","volume":"31","author":"B Marculescu","year":"2022","unstructured":"Marculescu, B., Zhang, M., Arcuri, A.: On the faults found in rest APIs by automated test generation. ACM Trans. Softw. Eng. Methodol. 31 (3), 1\u201343 (2022)","journal-title":"ACM Trans. Softw. Eng. Methodol."},{"issue":"2","key":"433_CR103","doi-asserted-by":"crossref","first-page":"105","DOI":"10.1002\/stvr.294","volume":"14","author":"P McMinn","year":"2004","unstructured":"McMinn, P.: Search-based software test data generation: a survey. Softw. Test. Verif. Reliab 14 (2), 105\u2013156 (2004)","journal-title":"Softw. Test. Verif. Reliab"},{"key":"433_CR104","doi-asserted-by":"crossref","unstructured":"McMinn, P., Holcombe, M.: The state problem for evolutionary testing. In: Genetic and Evolutionary Computation Conference, pp. 2488\u20132498. Springer (2003)","DOI":"10.1007\/3-540-45110-2_152"},{"key":"433_CR105","doi-asserted-by":"crossref","unstructured":"McMinn, P., Shahbaz, M., Stevenson, M.: Search-based test input generation for string data types using the results of web queries. In: 2012 IEEE Fifth International Conference on Software Testing, Verification and Validation, pp. 141\u2013150. IEEE (2012)","DOI":"10.1109\/ICST.2012.94"},{"issue":"4","key":"433_CR106","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3447265","volume":"30","author":"HD Men\u00e9ndez","year":"2021","unstructured":"Men\u00e9ndez, H.D., Jahangirova, G., Sarro, F., Tonella, P., Clark, D.: Diversifying focused testing for unit testing. ACM Trans. Softw. Eng. Methodol. (TOSEM) 30 (4), 1\u201324 (2021)","journal-title":"ACM Trans. Softw. Eng. Methodol. (TOSEM)"},{"issue":"12","key":"433_CR107","doi-asserted-by":"crossref","first-page":"1085","DOI":"10.1109\/32.988709","volume":"27","author":"CC Michael","year":"2001","unstructured":"Michael, C.C., McGraw, G., Schatz, M.A.: Generating software test data by evolution. IEEE Trans. Softw. Eng. 27 (12), 1085\u20131110 (2001)","journal-title":"IEEE Trans. Softw. Eng."},{"key":"433_CR108","doi-asserted-by":"crossref","unstructured":"Oster, N., Saglietti, F.: Automatic test data generation by multi-objective optimisation. In: International Conference on Computer Safety, Reliability, and Security, pp. 426\u2013438. Springer (2006)","DOI":"10.1007\/11875567_32"},{"key":"433_CR109","doi-asserted-by":"crossref","unstructured":"Padmanabhuni, B.\u00a0M., Tan, H. B.\u00a0K.: Light-weight rule-based test case generation for detecting buffer overflow vulnerabilities. In: 2015 IEEE\/ACM 10th International Workshop on Automation of Software Test, pp. 48\u201352. IEEE (2015)","DOI":"10.1109\/AST.2015.17"},{"key":"433_CR110","doi-asserted-by":"crossref","unstructured":"Paduraru, C., Melemciuc, M.-C., Stefanescu, A.: A distributed implementation using apache spark of a genetic algorithm applied to test data generation. In: Proceedings of the Genetic and Evolutionary Computation Conference Companion, pp. 1857\u20131863 (2017)","DOI":"10.1145\/3067695.3084219"},{"issue":"2","key":"433_CR111","doi-asserted-by":"crossref","first-page":"122","DOI":"10.1109\/TSE.2017.2663435","volume":"44","author":"A Panichella","year":"2017","unstructured":"Panichella, A., Kifetew, F.M., Tonella, P.: Automated test case generation as a many-objective optimisation problem with dynamic selection of the targets. IEEE Trans. Software Eng. 44 (2), 122\u2013158 (2017)","journal-title":"IEEE Trans. Software Eng."},{"key":"433_CR112","doi-asserted-by":"crossref","unstructured":"Panichella, A., Kifetew, F.\u00a0M., Tonella, P.: Reformulating branch coverage as a many-objective optimization problem. In: 2015 IEEE 8th International Conference on Software Testing, Verification and Validation (ICST), pp. 1\u201310. IEEE (2015)","DOI":"10.1109\/ICST.2015.7102604"},{"key":"433_CR113","doi-asserted-by":"crossref","unstructured":"Pa\u0142ka, D., Zachara, M., W\u00f3jcik, K.: Evolutionary scanner of web application vulnerabilities. In: International Conference on Computer Networks, pp. 384\u2013396. Springer (2016)","DOI":"10.1007\/978-3-319-39207-3_33"},{"key":"433_CR114","doi-asserted-by":"crossref","unstructured":"Rauf, A., Anwar, S., Jaffer, M.\u00a0A., Shahid, A.\u00a0A.: Automated GUI test coverage analysis using GA. In: 2010 Seventh International Conference on Information Technology: New Generations, pp. 1057\u20131062. IEEE (2010)","DOI":"10.1109\/ITNG.2010.95"},{"key":"433_CR115","unstructured":"Rawat, S., Ceara, D., Mounier, L., Potet, M.-L.: Combining static and dynamic analysis for vulnerability detection. arXiv preprint https:\/\/arxiv.org\/abs\/1305.3883 (2013)"},{"key":"433_CR116","doi-asserted-by":"crossref","unstructured":"Rawat, S., Mounier, L.: An evolutionary computing approach for hunting buffer overflow vulnerabilities: a case of aiming in dim light. In: 2010 European Conference on Computer Network Defense, pp. 37\u201345. IEEE (2010)","DOI":"10.1109\/EC2ND.2010.14"},{"key":"433_CR117","doi-asserted-by":"crossref","unstructured":"Ren, T., Wang, X., Li, Q., Wang, C., Dong, J., Guo, G.: Vulnerability mining technology based on genetic algorithm and model constraint. In: IOP Conference Series: Materials Science and Engineering, Vol. 750, p. 012168. IOP Publishing (2020)","DOI":"10.1088\/1757-899X\/750\/1\/012168"},{"key":"433_CR118","doi-asserted-by":"crossref","unstructured":"Reungsinkonkarn, A., Apirukvorapinit, P.: Bug detection using particle swarm optimization with search space reduction. In: 2015 6th International Conference on Intelligent Systems, Modelling and Simulation, pp. 53\u201357. IEEE (2015)","DOI":"10.1109\/ISMS.2015.20"},{"issue":"2","key":"433_CR119","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3182659","volume":"51","author":"DS Rodrigues","year":"2018","unstructured":"Rodrigues, D.S., Delamaro, M.E., Corr\u00eaa, C.G., Nunes, F.L.: Using genetic algorithms in test data generation: a critical systematic mapping. ACM Comput. Surv. 51 (2), 1\u201323 (2018)","journal-title":"ACM Comput. Surv."},{"key":"433_CR120","doi-asserted-by":"crossref","unstructured":"Romano, D., Di\u00a0Penta, M., Antoniol, G.: An approach for search based testing of null pointer exceptions. In: 2011 Fourth IEEE International Conference on Software Testing, Verification and Validation, pp. 160\u2013169. IEEE (2011)","DOI":"10.1109\/ICST.2011.49"},{"key":"433_CR121","doi-asserted-by":"crossref","unstructured":"Saber, T., Delavernhe, F., Papadakis, M., O\u2019Neill, M., Ventresque, A.: A hybrid algorithm for multi-objective test case selection. In: 2018 IEEE Congress on Evolutionary Computation (CEC), pp. 1\u20138. IEEE (2018)","DOI":"10.1109\/CEC.2018.8477875"},{"key":"433_CR122","unstructured":"Seesing, A., Gross, H.-G.: A genetic programming approach to automated test generation for object-oriented software. Int. Trans. Syst. Sci. Appl. 1 (2) (2006)"},{"issue":"4","key":"433_CR123","doi-asserted-by":"crossref","first-page":"361","DOI":"10.1109\/TSE.2015.2487958","volume":"42","author":"A Shahbazi","year":"2015","unstructured":"Shahbazi, A., Miller, J.: Black-box string test case generation through a multi-objective optimization. IEEE Trans. Softw. Eng. 42 (4), 361\u2013378 (2015)","journal-title":"IEEE Trans. Softw. Eng."},{"key":"433_CR124","doi-asserted-by":"crossref","unstructured":"Shuai, B., Li, H., Zhang, L., Zhang, Q., Tang, C.: Software vulnerability detection based on code coverage and test cost. In: 2015 11th International Conference on Computational Intelligence and Security (CIS), pp. 317\u2013321. IEEE (2015a)","DOI":"10.1109\/CIS.2015.84"},{"key":"433_CR125","unstructured":"Shuai, B., Li, M., Li, H., Zhang, Q.: Test case generation for vulnerability detection using genetic algorithm. In: 4rd Int. Conf. Consumer Electronics, Communications and Networks, pp. 1198\u20131203 (2015)"},{"key":"433_CR126","doi-asserted-by":"crossref","unstructured":"Shuai, B., Li, M., Li, H., Zhang, Q., Tang, C.: Software vulnerability detection using genetic algorithm and dynamic taint analysis. In: 2013 3rd International Conference on Consumer Electronics, Communications and Networks, pp. 589\u2013593. IEEE (2013)","DOI":"10.1109\/CECNet.2013.6703400"},{"key":"433_CR127","doi-asserted-by":"crossref","first-page":"19","DOI":"10.1016\/j.infsof.2016.01.017","volume":"81","author":"RA Silva","year":"2017","unstructured":"Silva, R.A., de Souza, S. R. S., de Souza, P. S. L.: A systematic review on search based mutation testing. Inf. Softw. Technol. 81, 19\u201335 (2017)","journal-title":"Inf. Softw. Technol."},{"key":"433_CR128","doi-asserted-by":"crossref","unstructured":"Skaruz, J., Seredynski, F.: Detecting web application attacks with use of gene expression programming. In: 2009 IEEE Congress on Evolutionary Computation, pp. 2029\u20132035. IEEE (2009)","DOI":"10.1109\/CEC.2009.4983190"},{"key":"433_CR129","doi-asserted-by":"crossref","first-page":"96","DOI":"10.1007\/s10664-019-09762-1","volume":"25","author":"M Soltani","year":"2020","unstructured":"Soltani, M., Derakhshanfar, P., Devroey, X., Van Deursen, A.: A benchmark-based evaluation of search-based crash reproduction. Empir. Softw. Eng. 25, 96\u2013138 (2020)","journal-title":"Empir. Softw. Eng."},{"key":"433_CR130","doi-asserted-by":"crossref","unstructured":"Sparks, S., Embleton, S., Cunningham, R., Zou, C.: Automated vulnerability analysis: leveraging control flow for evolutionary input crafting. In: Twenty-Third Annual Computer Security Applications Conference (ACSAC 2007), pp. 477\u2013486. IEEE (2007)","DOI":"10.1109\/ACSAC.2007.27"},{"key":"433_CR131","doi-asserted-by":"crossref","unstructured":"Stallenberg, D.\u00a0M., Panichella, A.: Jcomix: A search-based tool to detect xml injection vulnerabilities in web applications. In: Proceedings of the 2019 27th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, pp. 1090\u20131094 (2019)","DOI":"10.1145\/3338906.3341178"},{"issue":"2","key":"433_CR132","doi-asserted-by":"crossref","first-page":"163","DOI":"10.1109\/TSE.2018.2844343","volume":"46","author":"J Thom\u00e9","year":"2018","unstructured":"Thom\u00e9, J., Shar, L.K., Bianculli, D., Briand, L.: An integrated approach for effective injection vulnerability analysis of web applications through security slicing and hybrid constraint solving. IEEE Trans. Software Eng. 46 (2), 163\u2013195 (2018)","journal-title":"IEEE Trans. Software Eng."},{"key":"433_CR133","doi-asserted-by":"crossref","unstructured":"Thom\u00e9, J., Gorla, A., Zeller, A.: Search-based security testing of web applications. In: Proceedings of the 7th International Workshop on Search-Based Software Testing, pp. 5\u201314 (2014)","DOI":"10.1145\/2593833.2593835"},{"key":"433_CR134","doi-asserted-by":"crossref","unstructured":"Thom\u00e9, J., Shar, L.\u00a0K., Bianculli, D., Briand, L.: Search-driven string constraint solving for vulnerability detection. In: 2017 IEEE\/ACM 39th International Conference on Software Engineering (ICSE), pp. 198\u2013208. IEEE (2017)","DOI":"10.1109\/ICSE.2017.26"},{"key":"433_CR135","doi-asserted-by":"crossref","unstructured":"Tlili, M., Wappler, S., Sthamer, H.: Improving evolutionary real-time testing. In: Proceedings of the 8th Annual Conference on Genetic and Evolutionary Computation, pp. 1917\u20131924 (2006)","DOI":"10.1145\/1143997.1144316"},{"issue":"4","key":"433_CR136","doi-asserted-by":"crossref","first-page":"119","DOI":"10.1145\/1013886.1007528","volume":"29","author":"P Tonella","year":"2004","unstructured":"Tonella, P.: Evolutionary testing of classes. ACM SIGSOFT Softw. Eng. Notes 29 (4), 119\u2013128 (2004)","journal-title":"ACM SIGSOFT Softw. Eng. Notes"},{"key":"433_CR137","doi-asserted-by":"crossref","unstructured":"Umar, K., Sultan, A.\u00a0B., Zulzalil, H., Admodisastro, N., Abdullah, M.\u00a0T.: Prevention of attack on Islamic websites by fixing SQL injection vulnerabilities using co-evolutionary search approach. In: The 5th International Conference on Information and Communication Technology for The Muslim World (ICT4M), pp. 1\u20136. IEEE (2014)","DOI":"10.1109\/ICT4M.2014.7020604"},{"key":"433_CR138","doi-asserted-by":"crossref","unstructured":"Umar, K., Sultan, A.\u00a0B., Zulzalil, H., Admodisastro, N., Abdullah, M.\u00a0T.: Formulation of SQL injection vulnerability detection as grammar reachability problem. In: 2018 International Conference on Information and Communication Technology for the Muslim World (ICT4M), pp. 179\u2013184. IEEE (2018)","DOI":"10.1109\/ICT4M.2018.00041"},{"key":"433_CR139","unstructured":"Vulnerability distribution of cve security vulnerabilities by types"},{"key":"433_CR140","doi-asserted-by":"crossref","unstructured":"Wang, W., Guo, X., Li, Z., Zhao, R.: Test case generation based on client-server of web applications by memetic algorithm. In: 2019 IEEE 30th International Symposium on Software Reliability Engineering (ISSRE), pp. 206\u2013216. IEEE (2019a)","DOI":"10.1109\/ISSRE.2019.00029"},{"key":"433_CR141","doi-asserted-by":"crossref","unstructured":"Wang, W., Wu, S., Li, Z., Zhao, R.: Parallel evolutionary test case generation for web applications. Inf. Softw. Technol. 155, 107113 (2023)","DOI":"10.1016\/j.infsof.2022.107113"},{"key":"433_CR142","doi-asserted-by":"crossref","unstructured":"Wang, Y., Wang, Y.: Use neural network to improve fault injection testing. In: 2017 IEEE International Conference on Software Quality, Reliability and Security Companion (QRS-C), pp. 377\u2013384. IEEE (2017)","DOI":"10.1109\/QRS-C.2017.69"},{"key":"433_CR143","doi-asserted-by":"crossref","unstructured":"Wang, Y., Wu, Z., Wei, Q., Wang, Q.: Field-aware evolutionary fuzzing based on input specifications and vulnerability metrics. In: 2019 IEEE 10th International Conference on Software Engineering and Service Science (ICSESS), pp. 1\u20137. IEEE (2019b)","DOI":"10.1109\/ICSESS47205.2019.9040809"},{"key":"433_CR144","doi-asserted-by":"crossref","unstructured":"Wappler, S., Lammermann, F.: Using evolutionary algorithms for the unit testing of object-oriented software. In: Proceedings of the 7th Annual Conference on Genetic and Evolutionary Computation, pp. 1053\u20131060, (2005)","DOI":"10.1145\/1068009.1068187"},{"issue":"14","key":"433_CR145","doi-asserted-by":"crossref","first-page":"841","DOI":"10.1016\/S0950-5849(01)00190-2","volume":"43","author":"J Wegener","year":"2001","unstructured":"Wegener, J., Baresel, A., Sthamer, H.: Evolutionary test environment for automatic structural testing. Inf. Softw. Technol. 43 (14), 841\u2013854 (2001)","journal-title":"Inf. Softw. Technol."},{"key":"433_CR146","unstructured":"Wegener, J., Buhr, K., Pohlheim, H.: Automatic test data generation for structural testing of embedded software systems by evolutionary testing. In: Proceedings of the 4th Annual Conference on Genetic and Evolutionary Computation, pp. 1233\u20131240 (2002)"},{"key":"433_CR147","doi-asserted-by":"crossref","unstructured":"Wei, Q., Li, Y., Zhang, Y.: A new method of evolutionary testing for path coverage. In: 2018 IEEE International Conference on Software Quality, Reliability and Security Companion (QRS-C), pp. 79\u201386. IEEE (2018)","DOI":"10.1109\/QRS-C.2018.00028"},{"key":"433_CR148","unstructured":"Wu, Z., Atwood, J.\u00a0W., Zhu, X.: A new fuzzing technique for software vulnerability mining. In: International Conference on Software Engineering. Citeseer (2009)"},{"key":"433_CR149","doi-asserted-by":"crossref","unstructured":"Xu, X., Jiao, L., Zhu, Z.: Boosting search based software testing by using ensemble methods. In: 2018 IEEE Congress on Evolutionary Computation (CEC), pp. 1\u201310. IEEE (2018)","DOI":"10.1109\/CEC.2018.8477717"},{"key":"433_CR150","doi-asserted-by":"crossref","first-page":"61999","DOI":"10.1109\/ACCESS.2020.2983762","volume":"8","author":"X Yao","year":"2020","unstructured":"Yao, X., Gong, D., Li, B., Dang, X., Zhang, G.: Testing method for software with randomness using genetic algorithm. IEEE Access 8, 61999\u201362010 (2020)","journal-title":"IEEE Access"},{"key":"433_CR151","doi-asserted-by":"crossref","unstructured":"Ye, J., Feng, C., Tang, C.: A fuzzer based on a fine-grained deeper strategy. In: 2017 4th International Conference on Information Science and Control Engineering (ICISCE), pp. 24\u201328. IEEE (2017)","DOI":"10.1109\/ICISCE.2017.15"},{"key":"433_CR152","doi-asserted-by":"crossref","unstructured":"Zhu, X.\u00a0Y., Wu, Z.\u00a0Y.: A new fuzzing technique using niche genetic algorithm. In: Advanced Materials Research, volume 756, pp. 4050\u20134058. Trans Tech Publ (2013)","DOI":"10.4028\/www.scientific.net\/AMR.756-759.4050"},{"key":"433_CR153","doi-asserted-by":"crossref","unstructured":"Zhu, Z., Jiao, L., Xu, X.: Combining search-based testing and dynamic symbolic execution by evolvability metric. In: 2018 IEEE International Conference on Software Maintenance and Evolution (ICSME), pp. 59\u201368. IEEE (2018)","DOI":"10.1109\/ICSME.2018.00015"}],"container-title":["Automated Software Engineering"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10515-024-00433-0.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s10515-024-00433-0\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10515-024-00433-0.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,10,28]],"date-time":"2024-10-28T15:27:53Z","timestamp":1730129273000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s10515-024-00433-0"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,5,23]]},"references-count":154,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2024,11]]}},"alternative-id":["433"],"URL":"https:\/\/doi.org\/10.1007\/s10515-024-00433-0","relation":{},"ISSN":["0928-8910","1573-7535"],"issn-type":[{"type":"print","value":"0928-8910"},{"type":"electronic","value":"1573-7535"}],"subject":[],"published":{"date-parts":[[2024,5,23]]},"assertion":[{"value":"10 August 2023","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"13 March 2024","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"23 May 2024","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"There is no Conflict of interest and no data available for this review paper.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Conflict of interest"}}],"article-number":"44"}}