{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,10]],"date-time":"2026-06-10T18:33:30Z","timestamp":1781116410638,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":65,"publisher":"ACM","license":[{"start":{"date-parts":[[2017,10,30]],"date-time":"2017-10-30T00:00:00Z","timestamp":1509321600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/501100001381","name":"National Research Foundation Singapore","doi-asserted-by":"publisher","award":["NRF2014NCR-NCR001-21"],"award-info":[{"award-number":["NRF2014NCR-NCR001-21"]}],"id":[{"id":"10.13039\/501100001381","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2017,10,30]]},"DOI":"10.1145\/3133956.3134020","type":"proceedings-article","created":{"date-parts":[[2017,10,27]],"date-time":"2017-10-27T12:48:18Z","timestamp":1509108498000},"page":"2329-2344","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":606,"title":["Directed Greybox Fuzzing"],"prefix":"10.1145","author":[{"given":"Marcel","family":"B\u00f6hme","sequence":"first","affiliation":[{"name":"National University of Singapore, Singapore, Singapore"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Van-Thuan","family":"Pham","sequence":"additional","affiliation":[{"name":"National University of Singapore, Singapore, Singapore"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Manh-Dung","family":"Nguyen","sequence":"additional","affiliation":[{"name":"National University of Singapore, Singapore, Singapore"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Abhik","family":"Roychoudhury","sequence":"additional","affiliation":[{"name":"National University of Singapore, Singapore, Singapore"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2017,10,30]]},"reference":[{"key":"e_1_3_2_2_1_1","doi-asserted-by":"publisher","DOI":"10.1002\/stvr.1486"},{"key":"e_1_3_2_2_2_1","volume-title":"Wie man Heartbleed h\u00e4tte finden k\u00f6nnen. Golem.de (April","author":"B\u00f6ck Hanno","year":"2015","unstructured":"Hanno B\u00f6ck. 2015. Wie man Heartbleed h\u00e4tte finden k\u00f6nnen. Golem.de (April 2015). http:\/\/www.golem.de\/news\/fuzzing-wie-man-heartbleedhaette- finden-koennen-1504--113345.html (DE); https:\/\/blog.hboeck.de\/archives\/868- How-Heartbleed-couldve-been-found.html (EN)."},{"key":"e_1_3_2_2_3_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2013.6606576"},{"key":"e_1_3_2_2_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/2491411.2491430"},{"key":"e_1_3_2_2_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2015.2487274"},{"key":"e_1_3_2_2_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978428"},{"key":"e_1_3_2_2_7_1","volume-title":"Proceedings of the 8th USENIX Conference on Operating Systems Design and Implementation (OSDI'08)","author":"Cadar Cristian","year":"2008","unstructured":"Cristian Cadar, Daniel Dunbar, and Dawson Engler. 2008. KLEE: Unassisted and Automatic Generation of High-coverage Tests for Complex Systems Programs. In Proceedings of the 8th USENIX Conference on Operating Systems Design and Implementation (OSDI'08). 209--224."},{"key":"e_1_3_2_2_8_1","doi-asserted-by":"crossref","unstructured":"Vitaly Chipounov Volodymyr Kuznetsov and George Candea. 2011. S2E: A Platform for In-vivo Multi-path Analysis of Software Systems. In ASPLOS XVI. 265--278.","DOI":"10.1145\/1961296.1950396"},{"key":"e_1_3_2_2_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/2884781.2884843"},{"key":"e_1_3_2_2_10_1","doi-asserted-by":"publisher","DOI":"10.5555\/1792734.1792766"},{"key":"e_1_3_2_2_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2009.5070546"},{"key":"e_1_3_2_2_12_1","volume-title":"SAGE: Whitebox Fuzzing for Security Testing. Queue 10, 1, Article 20 (Jan.","author":"Godefroid Patrice","year":"2012","unstructured":"Patrice Godefroid, Michael Y. Levin, and David Molnar. 2012. SAGE: Whitebox Fuzzing for Security Testing. Queue 10, 1, Article 20 (Jan. 2012), 8 pages."},{"key":"e_1_3_2_2_13_1","volume-title":"Molnar","author":"Godefroid Patrice","year":"2008","unstructured":"Patrice Godefroid, Michael Y. Levin, and David A. Molnar. 2008. Automated Whitebox Fuzz Testing.. In NDSS '08 (2009-06--18). The Internet Society."},{"key":"e_1_3_2_2_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978405"},{"key":"e_1_3_2_2_15_1","volume-title":"Proceedings of the 22Nd USENIX Conference on Security (SEC'13)","author":"Haller Istvan","year":"2013","unstructured":"Istvan Haller, Asia Slowinska, Matthias Neugschwandtner, and Herbert Bos. 2013. Dowsing for Overflows: A Guided Fuzzer to Find Buffer Boundary Violations. In Proceedings of the 22Nd USENIX Conference on Security (SEC'13). 49--64."},{"key":"e_1_3_2_2_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/2025113.2025144"},{"key":"e_1_3_2_2_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2016.2589242"},{"key":"e_1_3_2_2_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2012.6227168"},{"key":"e_1_3_2_2_19_1","doi-asserted-by":"publisher","unstructured":"S. Kirkpatrick C. D. Gelatt and M. P. Vecchi. 1983. Optimization by simulated annealing. SCIENCE 220 4598 (1983) 671--680. 10.1126\/science.220.4598.671","DOI":"10.1126\/science.220.4598.671"},{"key":"e_1_3_2_2_20_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-23702-7_11"},{"key":"e_1_3_2_2_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/2491411.2491438"},{"key":"e_1_3_2_2_22_1","doi-asserted-by":"publisher","DOI":"10.1109\/ASE.2017.8115639"},{"key":"e_1_3_2_2_23_1","first-page":"90","article-title":"Data structures and algorithms: 1. Searching and sorting","volume":"84","author":"Mehlhorn Kurt","year":"1984","unstructured":"Kurt Mehlhorn. 1984. Data structures and algorithms: 1. Searching and sorting. Springer 84 (1984), 90.","journal-title":"Springer"},{"key":"e_1_3_2_2_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/96267.96279"},{"key":"e_1_3_2_2_25_1","volume-title":"Proceedings of the 12th Network and Distributed Systems Security Symposium (NDSS).","author":"Newsome James","year":"2005","unstructured":"James Newsome, Dawn Song, James Newsome, and Dawn Song. 2005. Dynamic taint analysis: Automatic detection, analysis, and signature generation of exploit attacks on commodity software. In Proceedings of the 12th Network and Distributed Systems Security Symposium (NDSS)."},{"key":"e_1_3_2_2_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/1993498.1993558"},{"key":"e_1_3_2_2_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/2970276.2970316"},{"key":"e_1_3_2_2_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2015.99"},{"key":"e_1_3_2_2_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/1858996.1859083"},{"key":"e_1_3_2_2_31_1","volume-title":"VUzzer: Application-aware Evolutionary Fuzzing. In NDSS '17","author":"Rawat Sanjay","year":"2017","unstructured":"Sanjay Rawat, Vivek Jain, Ashish Kumar, Lucian Cojocar, Cristiano Giuffrida, and Herbert Bos. 2017. VUzzer: Application-aware Evolutionary Fuzzing. In NDSS '17. 1--14."},{"key":"e_1_3_2_2_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/2884781.2884835"},{"key":"e_1_3_2_2_33_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICST.2013.18"},{"key":"e_1_3_2_2_34_1","doi-asserted-by":"publisher","DOI":"10.1109\/ASE.2008.32"},{"key":"e_1_3_2_2_35_1","volume-title":"Proceedings of the 2012 USENIX Conference on Annual Technical Conference (USENIX ATC'12). 28--28","author":"Serebryany Konstantin","year":"2012","unstructured":"Konstantin Serebryany, Derek Bruening, Alexander Potapenko, and Dmitry Vyukov. 2012. AddressSanitizer: A Fast Address Sanity Checker. In Proceedings of the 2012 USENIX Conference on Annual Technical Conference (USENIX ATC'12). 28--28."},{"key":"e_1_3_2_2_36_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2007.27"},{"key":"e_1_3_2_2_37_1","volume-title":"2015 IEEE\/ACM International Symposium on Code Generation and Optimization (CGO). 46--55","author":"Stepanov E.","unstructured":"E. Stepanov and K. Serebryany. 2015. MemorySanitizer: Fast detector of unini- tialized memory use in C. In 2015 IEEE\/ACM International Symposium on Code Generation and Optimization (CGO). 46--55."},{"key":"e_1_3_2_2_38_1","volume-title":"Driller: Augmenting Fuzzing Through Selective Symbolic Execution. In NDSS '16","author":"Stephens Nick","year":"2016","unstructured":"Nick Stephens, John Grosen, Christopher Salls, Andrew Dutcher, Ruoyu Wang, Jacopo Corbetta, Yan Shoshitaishvili, Christopher Kruegel, and Giovanni Vigna. 2016. Driller: Augmenting Fuzzing Through Selective Symbolic Execution. In NDSS '16. 1--16."},{"key":"e_1_3_2_2_39_1","first-page":"101","article-title":"A Critique and Improvement of the \"CL\" Common Language Effect Size Statistics of McGraw and Wong","volume":"25","author":"Vargha Andr\u00e1s","year":"2000","unstructured":"Andr\u00e1s Vargha and Harold D. Delaney. 2000. A Critique and Improvement of the \"CL\" Common Language Effect Size Statistics of McGraw and Wong. Journal of Educational and Behavioral Statistics 25, 2 (2000), 101--132.","journal-title":"Journal of Educational and Behavioral Statistics"},{"key":"e_1_3_2_2_40_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.37"},{"key":"e_1_3_2_2_41_1","volume-title":"Michael Zalewski. https: \/\/lcamtuf.blogspot.com\/2014\/11\/pulling-jpegs-out-of-thin-air.html.","year":"2017","unstructured":"Website. 2017. AFL - Pulling Jpegs out of Thin Air, Michael Zalewski. https: \/\/lcamtuf.blogspot.com\/2014\/11\/pulling-jpegs-out-of-thin-air.html. (2017). Accessed: 2017-05--13."},{"key":"e_1_3_2_2_42_1","volume-title":"AFL Vulnerability Trophy Case","unstructured":"Website. 2017. AFL Vulnerability Trophy Case. http:\/\/lcamtuf.coredump.cx\/afl\/ #bugs. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_43_1","unstructured":"Website. 2017. American Fuzzy Lop (AFL) Fuzzer. http:\/\/lcamtuf.coredump.cx\/ afl\/technical_details.txt. (2017). Accessed: 2017-05--13."},{"key":"e_1_3_2_2_44_1","unstructured":"Website. 2017. Announcing OSS-Fuzz. https:\/\/testing.googleblog.com\/2016\/12\/ announcing-oss-fuzz-continuous-fuzzing.html. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_45_1","unstructured":"Website. 2017. BoringSSL -- Google's fork of OpenSSL. https:\/\/boringssl. googlesource.com\/. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_46_1","unstructured":"Website. 2017. Commit to OpenSSL that introduced Heartbleed. https:\/\/git. openssl.org\/gitweb\/?p=openssl.git;a=commitdiff;h=4817504. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_47_1","unstructured":"Website. 2017. Descriptive statistics of OpenSSL library. https:\/\/www.openhub. net\/p\/openssl. (2017). Accessed: 2017-05--13."},{"key":"e_1_3_2_2_48_1","unstructured":"Website. 2017. Expat XML Parser. https:\/\/libexpat.github.io\/. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_49_1","volume-title":"Heartbleed - A vulnerability in OpenSSL","unstructured":"Website. 2017. Heartbleed - A vulnerability in OpenSSL. http:\/\/heartbleed.com\/. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_50_1","unstructured":"Website. 2017. Libav Open source audio and video processing tools. https: \/\/libav.org\/. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_51_1","unstructured":"Website. 2017. \"libc++abi\" C++ Standard Library Support. https:\/\/libcxxabi.llvm. org\/. (2017). Accessed: 2017-05--13."},{"key":"e_1_3_2_2_52_1","unstructured":"Website. 2017. LibDwarf is parser for the DWARF information used by compilers and debuggers. https:\/\/www.prevanders.net\/dwarf.html\/. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_53_1","unstructured":"Website. 2017. LibFuzzer: A library for coverage-guided fuzz testing. http: \/\/llvm.org\/docs\/LibFuzzer.html. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_54_1","volume-title":"LibPNG - A library for processing PNG files","unstructured":"Website. 2017. LibPNG - A library for processing PNG files. http:\/\/www.libpng. org\/pub\/png\/libpng.html. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_55_1","volume-title":"Libxml2 is the XML C parser and toolkit developed for the Gnome project","unstructured":"Website. 2017. Libxml2 is the XML C parser and toolkit developed for the Gnome project. http:\/\/xmlsoft.org\/. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_56_1","unstructured":"Website. 2017. Ming is a library for generating Macromedia Flash files. http: \/\/www.libming.org\/. (2017). Accessed: 2017-05--13."},{"key":"e_1_3_2_2_57_1","unstructured":"Website. 2017. MITRE -- Common Vulnerabilities and Exposures. https:\/\/cve. mitre.org\/. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_58_1","unstructured":"Website. 2017. OSS-Fuzz: Continuous Fuzzing Framework for Open-Source Projects. https:\/\/github.com\/google\/oss-fuzz. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_59_1","unstructured":"Website. 2017. OSS-Fuzz: Five Months Later. https:\/\/testing.googleblog.com\/ 2017\/05\/oss-fuzz-five-months-later-and.html. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_60_1","unstructured":"Website. 2017. Peach Fuzzer Platform. http:\/\/www.peachfuzzer.com\/products\/ peach-platform\/. (2017). Accessed: 2017-05--13."},{"key":"e_1_3_2_2_61_1","unstructured":"Website. 2017. Search engine for the internet of things -- devices still vulnerable to Heartbleed. https:\/\/www.shodan.io\/report\/89bnfUyJ. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_62_1","volume-title":"SPIKE Fuzzer Platform","unstructured":"Website. 2017. SPIKE Fuzzer Platform. http:\/\/www.immunitysec.com. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_63_1","unstructured":"Website. 2017. US National Vulnerability Database. https:\/\/nvd.nist.gov\/vuln\/ search. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_64_1","unstructured":"Website. 2017. Video Lan Client -- Open-source Media Player. https:\/\/www. videolan.org. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_65_1","volume-title":"Zzuf: multi-purpose fuzzer","unstructured":"Website. 2017. Zzuf: multi-purpose fuzzer. http:\/\/caca.zoy.org\/wiki\/zzuf. (2017). Accessed: 2017-05-13."},{"key":"e_1_3_2_2_66_1","doi-asserted-by":"publisher","DOI":"10.1145\/1882291.1882330"}],"event":{"name":"CCS '17: 2017 ACM SIGSAC Conference on Computer and Communications Security","location":"Dallas Texas USA","acronym":"CCS '17","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3133956.3134020","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3133956.3134020","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T02:11:02Z","timestamp":1750212662000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3133956.3134020"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,10,30]]},"references-count":65,"alternative-id":["10.1145\/3133956.3134020","10.1145\/3133956"],"URL":"https:\/\/doi.org\/10.1145\/3133956.3134020","relation":{},"subject":[],"published":{"date-parts":[[2017,10,30]]},"assertion":[{"value":"2017-10-30","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}