Push the Red Button
Malware, encryption, reverse engineering, networking, and other arcana.
Wednesday, October 17, 2018
A couple ideas that went nowhere
I suspect a lot of people in academia end up having a lot of ideas and projects that went nowhere for any number of reasons – maybe there ...
Monday, March 19, 2018
Of Bugs and Baselines
Summary : recently published results on the LAVA-M synthetic bug dataset are exciting. However, I show that much simpler techniques can al...
Thursday, October 20, 2016
NYC Area Security Folks – Come to SOS!
Every year the NYU School of Engineering hosts Cyber Security Awareness Week (CSAW) – the largest student-run security event in the country...
Saturday, October 8, 2016
The LAVA Synthetic Bug Corpora
I'm planning a longer post discussing how we evaluated the LAVA bug injection system, but since we've gotten approval to release th...
Thursday, July 21, 2016
Fuzzing with AFL is an Art
Using one of the test cases from the previous post , I examine what affects AFL's ability to find a bug placed by LAVA in a program. Al...
Monday, July 11, 2016
The Mechanics of Bug Injection with LAVA
This is the second in a series of posts about evaluating and improving bug detection software by automatically injecting bugs into programs...
Tuesday, June 7, 2016
How to add a million bugs to a program (and why you might want to)
This is the first in a series of posts about evaluating and improving bug detection software by automatically injecting bugs into programs...
View web version