{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,5]],"date-time":"2026-06-05T04:38:25Z","timestamp":1780634305983,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":46,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,11,21]],"date-time":"2024-11-21T00:00:00Z","timestamp":1732147200000},"content-version":"vor","delay-in-days":372,"URL":"http:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","award":["1956364"],"award-info":[{"award-number":["1956364"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"name":"National Science Foundation","award":["1801751"],"award-info":[{"award-number":["1801751"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,11,15]]},"DOI":"10.1145\/3576915.3616610","type":"proceedings-article","created":{"date-parts":[[2023,11,21]],"date-time":"2023-11-21T12:35:13Z","timestamp":1700570113000},"page":"1600-1614","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":27,"title":["Hopper: Interpretative Fuzzing for Libraries"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0005-7482-1359","authenticated-orcid":false,"given":"Peng","family":"Chen","sequence":"first","affiliation":[{"name":"Tencent Security Big Data Lab, ShenZhen, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0003-3436-3205","authenticated-orcid":false,"given":"Yuxuan","family":"Xie","sequence":"additional","affiliation":[{"name":"Tencent Security Big Data Lab, ShenZhen, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0006-6766-6271","authenticated-orcid":false,"given":"Yunlong","family":"Lyu","sequence":"additional","affiliation":[{"name":"Tencent Security Big Data Lab, ShenZhen, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0005-0614-9580","authenticated-orcid":false,"given":"Yuxiao","family":"Wang","sequence":"additional","affiliation":[{"name":"Tencent Security Big Data Lab, ShenZhen, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4072-0710","authenticated-orcid":false,"given":"Hao","family":"Chen","sequence":"additional","affiliation":[{"name":"University of California, Davis, Davis, CA, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2023,11,21]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"A fuzz driver generated by FuzzGen for libvpx. https:\/\/github.com\/HexHive\/FuzzGen\/tree\/master\/examples\/libvpx."},{"key":"e_1_3_2_1_2_1","unstructured":"A schema for generating sqlite3 fuzz drivers written by GraphFuzz. https:\/\/git hub.com\/hgarrereyn\/GraphFuzz\/blob\/master\/experiments\/sqlite3\/in\/f1\/sche ma.yaml."},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2019.23412"},{"key":"e_1_3_2_1_4_1","unstructured":"Vaggelis Atlidakis Roxana Geambasu Patrice Godefroid Marina Polishchuk and Baishakhi Ray. 2020. Pythia: grammar-based fuzzing of REST APIs with coverage-guided feedback and learning-based mutations. arXiv preprint arXiv:2005.11498."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2019.00083"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/3338906.3340456"},{"key":"e_1_3_2_1_7_1","volume-title":"28th USENIX Security Symposium (USENIX Security 19), 1985","author":"Tim","year":"2002","unstructured":"Tim Blazytko et al. 2019. GRIMOIRE: synthesizing structure while fuzzing. In 28th USENIX Security Symposium (USENIX Security 19), 1985--2002."},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP46214.2022.9833796"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00046"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3363225"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00071"},{"key":"e_1_3_2_1_12_1","unstructured":"cre2. https:\/\/github.com\/marcomaggi\/cre2\/."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/3385412.3385972"},{"key":"e_1_3_2_1_14_1","volume-title":"USENIX Security Symposium (USENIX Security)","author":"Gan Shuitao","year":"2020","unstructured":"Shuitao Gan, Chao Zhang, Peng Chen, Bodong Zhao, Xiaojun Qin, Dong Wu, and Zuoning Chen. 2020. GREYONE: data flow sensitive fuzzing. In USENIX Security Symposium (USENIX Security). Boston, MA, (Aug. 2020)."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1109\/ASE51524.2021.9678913"},{"key":"e_1_3_2_1_16_1","unstructured":"Generating bindings to c. https:\/\/rust-lang.github.io\/rust-bindgen\/cpp.html."},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/ASE.2017.8115618"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/3510003.3510228"},{"key":"e_1_3_2_1_19_1","volume-title":"Fuzzil: coverage guided fuzzing for Javascript engines. Department of Informatics","author":"Gro\u00df Samuel","unstructured":"Samuel Gro\u00df. 2018. Fuzzil: coverage guided fuzzing for Javascript engines. Department of Informatics, Karlsruhe Institute of Technology."},{"key":"e_1_3_2_1_20_1","volume-title":"21st USENIX Security Symposium (USENIX Security 12)","author":"Holler Christian","year":"2012","unstructured":"Christian Holler, Kim Herzig, and Andreas Zeller. 2012. Fuzzing with code fragments. In 21st USENIX Security Symposium (USENIX Security 12), 445--458."},{"key":"e_1_3_2_1_21_1","unstructured":"How to split a fuzzer-generated input into several. https:\/\/github.com\/google \/fuzzing\/blob\/master\/docs\/split-inputs.md."},{"key":"e_1_3_2_1_22_1","volume-title":"29th USENIX Security Symposium (USENIX Security 20)","author":"Ispoglou Kyriakos","year":"2020","unstructured":"Kyriakos Ispoglou, Daniel Austin, Vishwath Mohan, and Mathias Payer. 2020. FuzzGen: automatic fuzzer generation. In 29th USENIX Security Symposium (USENIX Security 20), 2271--2287."},{"key":"e_1_3_2_1_23_1","volume-title":"2023 IEEE Symposium on Security and Privacy (SP). IEEE Computer Society, 746--762","author":"Jeong Bokdeuk","year":"2022","unstructured":"Bokdeuk Jeong, Joonun Jang, Hayoon Yi, Jiin Moon, Junsik Kim, Intae Jeon, Taesoo Kim, WooChul Shim, and Yong Ho Hwang. 2022. UTOPIA: automatic generation of fuzz driver using unit tests. In 2023 IEEE Symposium on Security and Privacy (SP). IEEE Computer Society, 746--762."},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2021.24334"},{"key":"e_1_3_2_1_25_1","volume-title":"29th USENIX Security Symposium (USENIX Security 20)","author":"Lee Suyoung","year":"2020","unstructured":"Suyoung Lee, HyungSeok Han, Sang Kil Cha, and Sooel Son. 2020. Montage: a neural network language model-guided JavaScript engine fuzzer. In 29th USENIX Security Symposium (USENIX Security 20), 2613--2630."},{"key":"e_1_3_2_1_26_1","unstructured":"LibFuzzer - a library for coverage-guided fuzz testing. https:\/\/llvm.org\/docs\/Li bFuzzer.html."},{"key":"e_1_3_2_1_27_1","volume-title":"USENIX Security Symposium (USENIX Security)","author":"Chenyang","year":"2023","unstructured":"Chenyang Lyu et al. 2023. MINER: a hybrid data-driven approach for REST API fuzzing. In USENIX Security Symposium (USENIX Security). Ananeim, CA, (Aug. 2023)."},{"key":"e_1_3_2_1_28_1","volume-title":"27th USENIX Security Symposium (USENIX Security 18)","author":"Pailoor Shankara","year":"2018","unstructured":"Shankara Pailoor, Andrew Aday, and Suman Jana. 2018. MoonShine: optimizing OS fuzzer seed selection with trace distillation. In 27th USENIX Security Symposium (USENIX Security 18), 729--743."},{"key":"e_1_3_2_1_29_1","unstructured":"Pulling JPEGs out of thin air. https:\/\/lcamtuf.blogspot.com\/2014\/11\/pulling-jp egs-out-of-thin-air.html."},{"key":"e_1_3_2_1_30_1","unstructured":"Rust-bindgen. https:\/\/github.com\/rust-lang\/rust-bindgen."},{"key":"e_1_3_2_1_31_1","volume-title":"OSS-Fuzz-Google's continuous fuzzing service for open source software","author":"Serebryany Kostya","unstructured":"Kostya Serebryany. 2017. OSS-Fuzz-Google's continuous fuzzing service for open source software. In USENIX Association."},{"key":"e_1_3_2_1_32_1","unstructured":"Source-based code coverage. https:\/\/clang.llvm.org\/docs\/SourceBasedCodeCo verage.html."},{"key":"e_1_3_2_1_33_1","unstructured":"SQLsmith. https:\/\/github.com\/anse1\/sqlsmith."},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/3460319.3464814"},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2016.23368"},{"key":"e_1_3_2_1_36_1","unstructured":"Structure-aware fuzzing with libFuzzer. https:\/\/github.com\/google\/fuzzing\/blo b\/master\/docs\/structure-aware-fuzzing.md."},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1145\/3477132.3483547"},{"key":"e_1_3_2_1_38_1","unstructured":"syzkaller - kernel fuzzer. https:\/\/github.com\/google\/syzkaller."},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-45744-4_29"},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.23"},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2019.00081"},{"key":"e_1_3_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2019.00057"},{"key":"e_1_3_2_1_43_1","volume-title":"27th USENIX Security Symposium (USENIX Security 18)","author":"Yun Insu","year":"2018","unstructured":"Insu Yun, Sangho Lee, Meng Xu, Yeongjin Jang, and Taesoo Kim. 2018. QSYM: a practical concolic execution engine tailored for hybrid fuzzing. In 27th USENIX Security Symposium (USENIX Security 18), 745--761."},{"key":"e_1_3_2_1_44_1","unstructured":"Michal Zalewski. American fuzzy lop. http:\/\/lcamtuf.coredump.cx\/afl\/."},{"key":"e_1_3_2_1_45_1","volume-title":"30th USENIX Security Symposium (USENIX Security 21)","author":"Zhang Cen","year":"2021","unstructured":"Cen Zhang, Xingwei Lin, Yuekang Li, Yinxing Xue, Jundong Xie, Hongxu Chen, Xinlei Ying, Jiashui Wang, and Yang Liu. 2021. APICraft: fuzz driver generation for closed-source SDK libraries. In 30th USENIX Security Symposium (USENIX Security 21), 2811--2828."},{"key":"e_1_3_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1145\/3372297.3417260"}],"event":{"name":"CCS '23: ACM SIGSAC Conference on Computer and Communications Security","location":"Copenhagen Denmark","acronym":"CCS '23","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3576915.3616610","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3576915.3616610","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3576915.3616610","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,21]],"date-time":"2025-08-21T01:47:59Z","timestamp":1755740879000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3576915.3616610"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,11,15]]},"references-count":46,"alternative-id":["10.1145\/3576915.3616610","10.1145\/3576915"],"URL":"https:\/\/doi.org\/10.1145\/3576915.3616610","relation":{},"subject":[],"published":{"date-parts":[[2023,11,15]]},"assertion":[{"value":"2023-11-21","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}