{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,29]],"date-time":"2026-04-29T21:55:28Z","timestamp":1777499728948,"version":"3.51.4"},"publisher-location":"New York, NY, USA","reference-count":25,"publisher":"ACM","license":[{"start":{"date-parts":[[2020,11,8]],"date-time":"2020-11-08T00:00:00Z","timestamp":1604793600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"Australian Research Council","award":["DE190100046"],"award-info":[{"award-number":["DE190100046"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2020,11,8]]},"DOI":"10.1145\/3368089.3409729","type":"proceedings-article","created":{"date-parts":[[2020,12,11]],"date-time":"2020-12-11T00:43:06Z","timestamp":1607647386000},"page":"713-724","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":56,"title":["Fuzzing: on the exponential cost of vulnerability discovery"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-4470-1824","authenticated-orcid":false,"given":"Marcel","family":"B\u00f6hme","sequence":"first","affiliation":[{"name":"Monash University, Australia"}]},{"given":"Brandon","family":"Falk","sequence":"additional","affiliation":[{"name":"Gamozo Labs, USA"}]}],"member":"320","published-online":{"date-parts":[[2020,11,8]]},"reference":[{"key":"e_1_3_2_2_1_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2011.121"},{"key":"e_1_3_2_2_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/3210309"},{"key":"e_1_3_2_2_3_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2015.2487274"},{"key":"e_1_3_2_2_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134020"},{"key":"e_1_3_2_2_5_1","volume-title":"Coveragebased Greybox Fuzzing as Markov Chain","author":"B\u00f6hme Marcel","year":"2017","unstructured":"Marcel B\u00f6hme , Van-Thuan Pham , and Abhik Roychoudhury . 2017. Coveragebased Greybox Fuzzing as Markov Chain . IEEE Transactions on Software Engineering ( 2017 ), 1\u015b18. Marcel B\u00f6hme, Van-Thuan Pham, and Abhik Roychoudhury. 2017. Coveragebased Greybox Fuzzing as Markov Chain. IEEE Transactions on Software Engineering ( 2017 ), 1\u015b18."},{"key":"e_1_3_2_2_6_1","volume-title":"Proceedings of the 8th USENIX Conference on Operating Systems Design and Implementation (OSDI '08)","author":"Cadar Cristian","year":"2008","unstructured":"Cristian Cadar , Daniel Dunbar , and Dawson Engler . 2008 . KLEE: Unassisted and Automatic Generation of High-coverage Tests for Complex Systems Programs . In Proceedings of the 8th USENIX Conference on Operating Systems Design and Implementation (OSDI '08) . 209\u015b224. Cristian Cadar, Daniel Dunbar, and Dawson Engler. 2008. KLEE: Unassisted and Automatic Generation of High-coverage Tests for Complex Systems Programs. In Proceedings of the 8th USENIX Conference on Operating Systems Design and Implementation (OSDI '08). 209\u015b224."},{"key":"e_1_3_2_2_7_1","doi-asserted-by":"crossref","unstructured":"Vitaly Chipounov Volodymyr Kuznetsov and George Candea. 2011. S2E: A Platform for In-vivo Multi-path Analysis of Software Systems. In ASPLOS XVI. 265\u015b278.  Vitaly Chipounov Volodymyr Kuznetsov and George Candea. 2011. S2E: A Platform for In-vivo Multi-path Analysis of Software Systems. In ASPLOS XVI. 265\u015b278.","DOI":"10.1145\/1961296.1950396"},{"key":"e_1_3_2_2_8_1","volume-title":"SAGE: Whitebox Fuzzing for Security Testing. Queue 10, 1, Article 20 (","author":"Godefroid Patrice","year":"2012","unstructured":"Patrice Godefroid , Michael Y. Levin , and David Molnar . 2012 . SAGE: Whitebox Fuzzing for Security Testing. Queue 10, 1, Article 20 ( Jan. 2012 ), 8 pages. Patrice Godefroid, Michael Y. Levin, and David Molnar. 2012. SAGE: Whitebox Fuzzing for Security Testing. Queue 10, 1, Article 20 ( Jan. 2012 ), 8 pages."},{"key":"e_1_3_2_2_9_1","volume-title":"Molnar","author":"Godefroid Patrice","year":"2008","unstructured":"Patrice Godefroid , Michael Y. Levin , and David A . Molnar . 2008 . Automated Whitebox Fuzz Testing.. In NDSS '08 (2009-06-18). The Internet Society . Patrice Godefroid, Michael Y. Levin, and David A. Molnar. 2008. Automated Whitebox Fuzz Testing.. In NDSS '08 (2009-06-18). The Internet Society."},{"key":"e_1_3_2_2_10_1","volume-title":"Building Fast Fuzzers. ArXiv abs\/","author":"Gopinath Rahul","year":"1911","unstructured":"Rahul Gopinath and Andreas Zeller . 2019. Building Fast Fuzzers. ArXiv abs\/ 1911 .07707 ( 2019 ). Rahul Gopinath and Andreas Zeller. 2019. Building Fast Fuzzers. ArXiv abs\/ 1911.07707 ( 2019 )."},{"key":"e_1_3_2_2_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/3238147.3238176"},{"key":"e_1_3_2_2_12_1","volume-title":"LibFuzzer: A library for coverage-guided fuzz testing","unstructured":"LibFuzzer. 2019. LibFuzzer: A library for coverage-guided fuzz testing . http:\/\/llvm.org\/docs\/LibFuzzer.html. ( 2019 ). Accessed: 2019-02-20. LibFuzzer. 2019. LibFuzzer: A library for coverage-guided fuzz testing. http:\/\/llvm.org\/docs\/LibFuzzer.html. ( 2019 ). Accessed: 2019-02-20."},{"key":"e_1_3_2_2_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/3158134"},{"key":"e_1_3_2_2_14_1","volume-title":"Manuel Egele, Edward J. Schwartz, and Maverick Woo.","author":"Man\u00e8s Valentin J. M.","year":"2018","unstructured":"Valentin J. M. Man\u00e8s , HyungSeok Han , Choongwoo Han , Sang Kil Cha , Manuel Egele, Edward J. Schwartz, and Maverick Woo. 2018 . Fuzzing : Art, Science, and Engineering. CoRR abs\/ 1812.00140 ( 2018 ). arXiv: 1812.00140 http:\/\/arxiv.org\/abs\/ 1812.00140 Valentin J. M. Man\u00e8s, HyungSeok Han, Choongwoo Han, Sang Kil Cha, Manuel Egele, Edward J. Schwartz, and Maverick Woo. 2018. Fuzzing: Art, Science, and Engineering. CoRR abs\/ 1812.00140 ( 2018 ). arXiv: 1812.00140 http:\/\/arxiv.org\/abs\/ 1812.00140"},{"key":"e_1_3_2_2_15_1","unstructured":"OSS-Fuzz. 2019. Continuous Fuzzing Platform. https:\/\/github.com\/google\/ossfuzz\/tree\/master\/infra. ( 2019 ). Accessed: 2019-02-20.  OSS-Fuzz. 2019. Continuous Fuzzing Platform. https:\/\/github.com\/google\/ossfuzz\/tree\/master\/infra. ( 2019 ). Accessed: 2019-02-20."},{"key":"e_1_3_2_2_17_1","volume-title":"Alexandru Razvan Caciulescu, and Abhik Roychoudhury","author":"Pham Van-Thuan","year":"2018","unstructured":"Van-Thuan Pham , Marcel B\u00f6hme , Andrew E. Santosa , Alexandru Razvan Caciulescu, and Abhik Roychoudhury . 2018 . Smart Greybox Fuzzing. CoRR abs\/ 1811.09447 ( 2018 ). arXiv: 1811.09447 http:\/\/arxiv.org\/abs\/ 1811.09447 Van-Thuan Pham, Marcel B\u00f6hme, Andrew E. Santosa, Alexandru Razvan Caciulescu, and Abhik Roychoudhury. 2018. Smart Greybox Fuzzing. CoRR abs\/ 1811.09447 ( 2018 ). arXiv: 1811.09447 http:\/\/arxiv.org\/abs\/ 1811.09447"},{"key":"e_1_3_2_2_18_1","doi-asserted-by":"crossref","unstructured":"Sanjay Rawat Vivek Jain Ashish Kumar Lucian Cojocar Cristiano Giufrida and Herbert Bos. 2017. VUzzer: Application-aware Evolutionary Fuzzing. In NDSS ' 17. 1\u015b14.  Sanjay Rawat Vivek Jain Ashish Kumar Lucian Cojocar Cristiano Giufrida and Herbert Bos. 2017. VUzzer: Application-aware Evolutionary Fuzzing. In NDSS ' 17. 1\u015b14.","DOI":"10.14722\/ndss.2017.23404"},{"key":"e_1_3_2_2_19_1","unstructured":"Konstantin Serebryany. 2017. https:\/\/github.com\/google\/fuzzer-test-suite. ( 2017 ). Accessed: 2019-02-20.  Konstantin Serebryany. 2017. https:\/\/github.com\/google\/fuzzer-test-suite. ( 2017 ). Accessed: 2019-02-20."},{"key":"e_1_3_2_2_20_1","unstructured":"Konstantin Serebryany. 2017. https:\/\/github.com\/google\/fuzzer-test-suite\/blob\/ master\/engine-comparison\/tutorial\/abTestingTutorial.md. ( 2017 ). Accessed: 2019-02-20.  Konstantin Serebryany. 2017. https:\/\/github.com\/google\/fuzzer-test-suite\/blob\/ master\/engine-comparison\/tutorial\/abTestingTutorial.md. ( 2017 ). Accessed: 2019-02-20."},{"key":"e_1_3_2_2_21_1","volume-title":"Automated Vulnerability Analysis: Leveraging Control Flow for Evolutionary Input Crafting. In Twenty-Third Annual Computer Security Applications Conference (ACSAC 2007 ). 477\u015b486","author":"Sparks S.","unstructured":"S. Sparks , S. Embleton , R. Cunningham , and C. Zou . 2007 . Automated Vulnerability Analysis: Leveraging Control Flow for Evolutionary Input Crafting. In Twenty-Third Annual Computer Security Applications Conference (ACSAC 2007 ). 477\u015b486 . S. Sparks, S. Embleton, R. Cunningham, and C. Zou. 2007. Automated Vulnerability Analysis: Leveraging Control Flow for Evolutionary Input Crafting. In Twenty-Third Annual Computer Security Applications Conference (ACSAC 2007 ). 477\u015b486."},{"key":"e_1_3_2_2_22_1","volume-title":"Driller: Augmenting Fuzzing Through Selective Symbolic Execution. In NDSS ' 16. 1\u015b16.","author":"Stephens Nick","year":"2016","unstructured":"Nick Stephens , John Grosen , Christopher Salls , Andrew Dutcher , Ruoyu Wang , Jacopo Corbetta , Yan Shoshitaishvili , Christopher Kruegel , and Giovanni Vigna . 2016 . Driller: Augmenting Fuzzing Through Selective Symbolic Execution. In NDSS ' 16. 1\u015b16. Nick Stephens, John Grosen, Christopher Salls, Andrew Dutcher, Ruoyu Wang, Jacopo Corbetta, Yan Shoshitaishvili, Christopher Kruegel, and Giovanni Vigna. 2016. Driller: Augmenting Fuzzing Through Selective Symbolic Execution. In NDSS ' 16. 1\u015b16."},{"key":"e_1_3_2_2_23_1","unstructured":"Website. 2017. BooFuzz: A fork and successor of the Sulley Fuzzing Framework. https:\/\/github.com\/jtpereyda\/boofuzz. ( 2017 ). Accessed: 2019-08-12.  Website. 2017. BooFuzz: A fork and successor of the Sulley Fuzzing Framework. https:\/\/github.com\/jtpereyda\/boofuzz. ( 2017 ). Accessed: 2019-08-12."},{"key":"e_1_3_2_2_24_1","volume-title":"Sulley: A pure-python fully automated and unattended fuzzing framework. https:\/\/github.com\/OpenRCE\/sulley. ( 2017 ). Accessed: 2019-08-12.","year":"2017","unstructured":"Website. 2017 . Sulley: A pure-python fully automated and unattended fuzzing framework. https:\/\/github.com\/OpenRCE\/sulley. ( 2017 ). Accessed: 2019-08-12. Website. 2017. Sulley: A pure-python fully automated and unattended fuzzing framework. https:\/\/github.com\/OpenRCE\/sulley. ( 2017 ). Accessed: 2019-08-12."},{"key":"e_1_3_2_2_25_1","volume-title":"Clusterfuzz: Trophy Case. https:\/\/github.com\/google\/clusterfuzz# trophies. ( 2020 ). Accessed: 2020-09-16.","year":"2020","unstructured":"Website. 2020 . Clusterfuzz: Trophy Case. https:\/\/github.com\/google\/clusterfuzz# trophies. ( 2020 ). Accessed: 2020-09-16. Website. 2020. Clusterfuzz: Trophy Case. https:\/\/github.com\/google\/clusterfuzz# trophies. ( 2020 ). Accessed: 2020-09-16."},{"key":"e_1_3_2_2_26_1","volume-title":"AFL: American Fuzzy Lop Fuzzer","author":"Zalewski Michal","year":"2019","unstructured":"Michal Zalewski . 2019 . AFL: American Fuzzy Lop Fuzzer . http:\/\/lcamtuf. coredump.cx\/afl\/technical_details.txt. ( 2019 ). Accessed: 2019-02-20. Michal Zalewski. 2019. AFL: American Fuzzy Lop Fuzzer. http:\/\/lcamtuf. coredump.cx\/afl\/technical_details.txt. ( 2019 ). Accessed: 2019-02-20."}],"event":{"name":"ESEC\/FSE '20: 28th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering","location":"Virtual Event USA","acronym":"ESEC\/FSE '20","sponsor":["SIGSOFT ACM Special Interest Group on Software Engineering"]},"container-title":["Proceedings of the 28th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3368089.3409729","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3368089.3409729","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T23:44:40Z","timestamp":1750203880000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3368089.3409729"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020,11,8]]},"references-count":25,"alternative-id":["10.1145\/3368089.3409729","10.1145\/3368089"],"URL":"https:\/\/doi.org\/10.1145\/3368089.3409729","relation":{},"subject":[],"published":{"date-parts":[[2020,11,8]]},"assertion":[{"value":"2020-11-08","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}