Research Practice – WindowsTechs.com

Un-bee-lievable Performance: Fast Coverage-guided Fuzzing with Honeybee and Intel Processor Trace

Posted on March 19, 2021 by Trent Brunson

By Allison Husain, UC Berkeley Today, we are releasing an experimental coverage-guided fuzzer called Honeybee that records program control flow using Intel Processor Trace (IPT) technology. Previously, IPT has been scrutinized for severe underperforman… Continue reading Un-bee-lievable Performance: Fast Coverage-guided Fuzzing with Honeybee and Intel Processor Trace→

Confessions of a smart contract paper reviewer

Posted on February 5, 2021 by Alex Groce

If you’re thinking of writing a paper describing an exciting novel approach to smart contract analysis and want to know what reviewers will be looking for, you’ve come to the right place. Deadlines for many big conferences (ISSTA tool papers, ASE, FSE,… Continue reading Confessions of a smart contract paper reviewer→

High-fidelity build instrumentation with blight

Posted on November 25, 2020 by William Woodruff

TL;DR: We’re open-sourcing a new framework, blight, for painlessly wrapping and instrumenting C and C++ build tools. We’re already using it on our research projects, and have included a set of useful actions. You can use it today for your own measureme… Continue reading High-fidelity build instrumentation with blight→

Everything You Ever Wanted To Know About Test-Case Reduction, But Didn’t Know to Ask

Posted on November 11, 2019 by Alex Groce

Imagine reducing the amount of code and time needed to test software, while at the same time increasing the efficacy of your tests and making your debugging tasks easier—all with minimal human effort. It seems too good to be true, but we’re… Continue reading Everything You Ever Wanted To Know About Test-Case Reduction, But Didn’t Know to Ask→

Two New Tools that Tame the Treachery of Files

Posted on November 1, 2019 by Evan Sultanik

Parsing is hard, even when a file format is well specified. But when the specification is ambiguous, it leads to unintended and strange parser and interpreter behaviors that make file formats susceptible to security vulnerabilities. What if we could au… Continue reading Two New Tools that Tame the Treachery of Files→

TSC Frequency For All: Better Profiling and Benchmarking

Posted on October 3, 2019 by Artem Dinaburg

Have you ever tried using LLVM’s X-Ray profiling tools to make some flame graphs, but gotten obscure errors like: ==65892==Unable to determine CPU frequency for TSC accounting. ==65892==Unable to determine CPU frequency. Or worse, have you profil… Continue reading TSC Frequency For All: Better Profiling and Benchmarking→

Announcing Manticore 0.3.0

Posted on June 7, 2019 by Eric Hennenfent

Earlier this week, Manticore leapt forward to version 0.3.0. Advances for our symbolic execution engine now include: “fast forwarding” through concrete execution that you don’t care about, support for Linux binaries statically compile… Continue reading Announcing Manticore 0.3.0→

User-Friendly Fuzzing with Sienna Locomotive

Posted on April 8, 2019 by Eric Hennenfent

Fuzzing is a great way to find bugs in software, but many developers don’t use it. We hope to change that today with the release of Sienna Locomotive, a new open-source fuzzer for Windows that emphasizes usability. Sienna Locomotive aims to make … Continue reading User-Friendly Fuzzing with Sienna Locomotive→

On Bounties and Boffins

Posted on January 14, 2019 by Trent Brunson

Trying to make a living as a programmer participating in bug bounties is the same as convincing yourself that you’re good enough at Texas Hold ‘Em to quit your job. There’s data to back this up in Fixing a Hole: The Labor Market for B… Continue reading On Bounties and Boffins→