Invention Grant
- Patent Title: Method for automatically detecting security vulnerability based on hybrid fuzzing, and apparatus thereof
-
Application No.: US15817372Application Date: 2017-11-20
-
Publication No.: US10586053B2Publication Date: 2020-03-10
- Inventor: Hwan Kuk Kim , Tae Eun Kim , Sang Hwan Oh , Soo Jin Yoon , Jee Soo Jurn , Geon Bae Na
- Applicant: KOREA INTERNET & SECURITY AGENCY
- Applicant Address: KR Naju-si
- Assignee: KOREA INTERNET & SECURITY AGENCY
- Current Assignee: KOREA INTERNET & SECURITY AGENCY
- Current Assignee Address: KR Naju-si
- Agency: Studebaker & Brackett PC
- Priority: KR10-2017-0133153 20171013
- Main IPC: G06F12/14
- IPC: G06F12/14 ; G06F21/57 ; G06F11/36 ; G06F11/28
Abstract:
Provided are a method and a system capable of efficiently detecting security vulnerability of program. The system for detecting the security vulnerability according to an embodiment of the present invention includes a vulnerability detecting module that acquires crash information, a binary analysis module that determines priority of binary information and whether to execute the route detection, and a route detecting module that executes the route detection to generate a new test case.
Public/Granted literature
- US20190114436A1 METHOD FOR AUTOMATICALLY DETECTING SECURITY VULNERABILITY BASED ON HYBRID FUZZING, AND APPARATUS THEREOF Public/Granted day:2019-04-18
Information query
