基于KLEE的开源工作

最新推荐文章于 2022-10-18 11:18:11 发布
最新推荐文章于 2022-10-18 11:18:11 发布
阅读量546 收藏 4
点赞数 1
分类专栏: 符号执行 文章标签: 符号执行 klee
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/u013648063/article/details/116479746
版权

从参考链接整理的基于klee的开源工作:http://klee.github.io/publications/

  1. KleeNet: Discovering Insidious Interaction Bugs in Wireless Sensor Networks Before Deployment
    Raimondas Sasnauskas, Olaf Landsiedel, Muhammad Hamad Alizai, Carsten Weise, Stefan Kowalewski, Klaus Wehrle
    ACM/IEEE International Conference on Information Processing in Sensor Networks (IPSN 2010)
    April 12-16, 2010, Stockholm, Sweden
    KleeNet is available here.
  2. S2E: A Platform for In Vivo Multi-Path Analysis of Software Systems
    Vitaly Chipounov, Volodymyr Kuznetsov, George Candea
    International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS 2011)
    March 5-11, 2011, Newport Beach, CA
    S2E is available at EPFL and GitHub.
  3. Parallel Symbolic Execution for Automated Real-World Software Testing
    Stefan Bucur, Vlad Ureche, Cristian Zamfir, George Candea
    ACM SIGOPS/EuroSys European Conference on Computer Systems (EuroSys 2011)
    April 10-13, 2011, Salzburg, Austria
    Cloud9 is available here.
  4. GKLEE: Concolic Verification and Test Generation for GPUs
    Guodong Li, Peng Li, Geof Sawaya, Ganesh Gopalakrishnan, Indradeep Ghosh, Sreeranga P. Rajan
    ACM Symposium on Principles and Practice of Parallel Programming (PPoPP 2012)
    February 25-29, 2012, New Orleans, LA, USA
    GKLEE is available here.
  5. make test-zesti: A Symbolic Execution Solution for Improving Regression Testing
    Paul Dan Marinescu, Cristian Cadar
    ACM/IEEE International Conference on Software Engineering (ICSE 2012)
    June 2-9, 2012, Zurich, Switzerland
    ZESTI is available here.
  6. BugRedux: Reproducing Field Failures for In-House Debugging
    Wei Jin, Alessandro Orso
    ACM/IEEE International Conference on Software Engineering (ICSE 2012)
    June 2-9, 2012, Zurich, Switzerland
    BugRedux is available here.
  7. Verifying Systems Rules Using Rule-Directed Symbolic Execution
    Heming Cui, Gang Hu, Jingyue Wu, Junfeng Yang
    International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS 2013)
    March 16-20, 2013, Houston, USA
    Woodpecker is available here.
  8. Symbiotic: Synergy of Instrumentation, Slicing, and Symbolic Execution (Competition Contribution)
    Jiri Slaby, Jan Strejcek, Marek Trtík
    International Conference on Tools and Algorithms for the Construction and Analysis of Systems (TACAS 2013)
    March 16-24, 2013, Rome, Italy
    Symbiotic is available here.
  9. Multi-solver Support in Symbolic Execution
    Hristina Palikareva, Cristian Cadar
    International Conference on Computer Aided Verification (CAV 2013)
    July 13-19, 2013, St Petersburg, Russia
    KLEE-Multisolver is available here.
  10. Conflict-Driven Symbolic Execution
    Celina Gomes do Val
    Master Thesis, University of British Columbia
    March 2014, Vancouver, CA
    KITE is available here.
  11. Docovery: Toward Generic Automatic Document Recovery
    Tomasz Kuchta, Cristian Cadar, Miguel Castro, Manuel Costa
    IEEE/ACM International Conference on Automated Software Engineering (ASE 2014)
    September 15-19, 2014, Vasteras, Sweden
    Docovery is available here.
  12. Analyzing Protocol Implementations for Interoperability
    Luis Pedrosa, Ari Fogel, Nupur Kothari, Ramesh Govindan, Ratul Mahajan, Todd Millstein
    USENIX Symposium on Networked Systems Design and Implementation (NSDI 2015)
    May 4-6, 2015, Oakland, CA, USA
    PIC is available here.
  13. Angelix: Scalable Multiline Program Patch Synthesis via Symbolic Analysis
    Sergey Mechtaev, Jooyong Yi, Abhik Roychoudhury
    ACM/IEEE International Conference on Software Engineering (ICSE 2016)
    May 14-22, 2016, Austin, Texas, USA
    Angelix is available here.
  14. Shadow of a Doubt: Testing for Divergences Between Software Versions
    Hristina Palikareva, Tomasz Kuchta, Cristian Cadar
    ACM/IEEE International Conference on Software Engineering (ICSE 2016)
    May 14-22, 2016, Austin, Texas, USA
    Shadow is available here.
  15. BovInspector: Automatic Inspection and Repair of Buffer Overflow Vulnerabilities
    Fengjuan Gao, Lingzhang Wang, Xuandong Li
    IEEE/ACM International conference on Automated Software Engineering (ASE 2016)
    September 3-7, 2016, Singapore, Singapore
    BovInspector is available here.
  16. Accelerating Array Constraints in Symbolic Execution
    David M. Perry, Andrea Mattavelli, Xiangyu Zhang, Cristian Cadar
    ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA 2017)
    July 10-14, 2017, Santa Barbara, CA, USA
    KLEE-Array is available here.
  17. Souper: A Synthesizing Superoptimizer
    Raimondas Sasnauskas, Yang Chen, Peter Collingbourne, Jeroen Ketema, Gratian Lup, Jubi Taneja, John Regehr
    arXiv, November 13, 2017
    Souper is available here.
  18. CRETE: A Versatile Binary-Level Concolic Testing Framework
    Bo Chen, Christopher Havlicek, Zhenkun Yang, Kai Cong, Raghudeep Kannavara, Fei Xie
    International Conference on Fundamental Approaches to Software Engineering (FASE 2018)
    April 14-20, 2018, Thessaloniki, Greece
    CRETE is available here.
  19. Map2Check Using LLVM and KLEE
    Rafael Menezes, Herbert Rocha, Lucas Cordeiro, Raimundo Barreto
    International Conference on Tools and Algorithms for the Construction and Analysis of Systems (TACAS 2018)
    April 14-20, 2018, Thessaloniki, Greece
    Map2Check is available here.
  20. Chopped Symbolic Execution
    David Trabish, Andrea Mattavelli, Noam Rinetzky, Cristian Cadar
    ACM/IEEE International Conference on Software Engineering (ICSE 2018)
    May 27 - June 3, 2018, Gothenburg, Sweden
    Chopper is available here.
  21. Symbolic Liveness Analysis for Real-World Software
    Daniel Schemmel, Julian Büning, Oscar Soria Dustmann, Thomas Noll, Klaus Wehrle
    International Conference on Computer Aided Verification (CAV 2018)
    July 14-17, 2018, Oxford, UK
    The implementation is available here.
  22. No Panic! Verification of Rust Programs by Symbolic Execution
    Marcus Lindner, Jorge Aparicius, Per Lindgren
    IEEE International Conference on Industrial Informatics (INDIN 2018)
    July 18-20, 2018, Porto, Protugal
    cargo-klee is available here.
  23. Inception: System-Wide Security Testing of Real-World Embedded Systems Software
    Nassim Corteggiani, Giovanni Camurati, Aurélien Francillon
    USENIX Security Symposium (Security 2018)
    August 15-17, 2018, Baltimore, USA
    Inception is available here.
  24. End-to-End Automated Exploit Generation for Validating the Security of Processor Designs
    Rui Zhang, Calvin Deutschbein, Peng Huang, Cynthia Sturton
    IEEE/ACM International Symposium on Microarchitecture (MICRO 2018)
    October 20-24, 2018, Fukuoka, Japan
    Coppelia is available here.
  25. Zero-Overhead Path Prediction with Progressive Symbolic Execution
    Richard Rutledge, Sunjae Park, Haider Khan, Alessandro Orso, Milos Prvulovic, Alenka Zajic
    IEEE/ACM International Conference on Software Engineering (ICSE 2019)
    May 25-31, 2019, Montreal, Canada
    pg-klee is available here.
  26. ApproxSymate: Path Sensitive Program Approximation using Symbolic Execution
    Himeshi De Silva, Andrew E. Santosa, Nhut-Minh Ho, Weng-Fai Wong
    ACM International Conference on Languages, Compilers, and Tools for Embedded Systems (LCTES 2019)
    June 23, 2019, Phoenix, USA
    ApproxSymate is available here.
  27. A Segmented Memory Model for Symbolic Execution
    Timotej Kapus, Cristian Cadar
    ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering (ESEC/FSE 2019)
    August 26-30, 2019, Tallin, Estonia
    The implementation is available here.
  28. KLEESPECTRE: Detecting Information Leakage through Speculative Cache Attacks via Symbolic Execution
    Guanhua Wang, Sudipta Chattopadhyay, Arnab Kumar Biswas, Tulika Mitra, Abhik Roychoudhury
    arXiv, September 2, 2019
    KLEESpectre is available here.
  29. Mousse: A System for Selective Symbolic Execution of Programs with Untamed Environments
    Yingtong Liu, Hsin-Wei Hung, Ardalan Amiri Sani
    ACM SIGOPS/EuroSys European Conference on Computer Systems (EuroSys 2020)
    April 27-30, 2020, Virtual Conference, Greece
    Mousse is available here.
  30. SAVIOR: Towards Bug-Driven Hybrid Testing
    Yaohui Chen, Peng Li, Jun Xu, Shengjian Guo, Rundong Zhou, Yulong Zhang, Taowei, Long Lu
    IEEE Symposium on Security and Privacy (S&P 2020)
    May 18-20, 2020, Virtual Conference, USA
    SAVIOR is available here.
  31. Relocatable Addressing Model for Symbolic Execution
    David Trabish, Noam Rinetzky
    ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA 2020)
    July 18–22, 2020, Virtual Event, USA
    klee-ram is available here.
  32. Running Symbolic Execution Forever
    Frank Busse, Martin Nowack, Cristian Cadar
    ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA 2020)
    July 18–22, 2020, Virtual Event, USA
    MoKlee is available here.
  33. Analyzing System Software Components Using API Model Guided Symbolic Execution
    Tuba Yavuz, Ken (Yihang) Bai
    Automated Software Engineering (AUSE)
    September 19, 2020
    PROMPT is available here.
  34. Pending Constraints in Symbolic Execution for Better Exploration and Seeding
    Timotej Kapus, Frank Busse, Cristian Cadar
    IEEE/ACM International Conference on Automated Software Engineering (ASE 2020)
    September 21-25, 2020, Virtual Event, AU
    The artefact is available here.
  35. Making Symbolic Execution Promising by Learning Aggressive State-Pruning Strategy
    Sooyoung Cha, Hakjoo Oh
    ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering (ESEC/FSE 2020)
    November 8-13, 2020, Virtual Event, USA
    HOMI is available here.
  36. Past-Sensitive Pointer Analysis for Symbolic Execution
    David Trabish, Timotej Kapus, Noam Rinetzky, Cristian Cadar
    ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering (ESEC/FSE 2020)
    November 8-13, 2020, Virtual Event, USA
    PSPA is available here.
  37. Automatic Buffer Overflow Warning Validation
    Feng-Juan Gao, Yu Wang, Lin-Zhang Wang, Zijiang Yang, Xuan-Dong Li
    Automatic Buffer Overflow Warning Validation. Journal of Computer Science and Technology, Volume 35 (JCST 2020)
    November 20, 2020
    BovInspector is available here.
  38. Address-Aware Query Caching for Symbolic Execution
    David Trabish, Shachar Itzhaky, Noam Rinetzky
    IEEE International Conference on Software Testing, Verification and Validation (ICST 2021)
    April 12-16, 2021, Virtual Event, Brazil
    The implementation is available here.
  39. Concolic Program Repair
    Ridwan Salihin Shariffdeen, Yannic Noller, Lars Grunske, Abhik Roychoudhury
    ACM SIGPLAN Conference on Programming Language Design and Implementation (PLDI 2021)
    June 20-26, 2021, Virtual Event
    The artefact is available here.
破落之实
关注
专栏目录
KLEE入门
vincent_nkcs的博客
12-23 1万+
简介 最近在使用KLEE工具进行软件缺陷检测时发现网上对于KLEE的介绍和使用的帖子很少,因此写此帖对KLEE的安装和使用方法做简单介绍,具体使用方法可以浏览官网http://klee.github.io/ 阅读本文你可以了解到: 什么是KLEE 如何安装KLEE 如何使用KLEE 什么是KLEE KLEE是一款开源的自动软件测试工具,基于LLVM编译底层基础,能够自动生成测试样...
推荐开源项目:KLEE - 符号虚拟机
最新发布
gitblog_00005的博客
05-09 438
推荐开源项目:KLEE - 符号虚拟机 项目地址:https://gitcode.com/klee/klee 1、项目介绍 KLEE 是一个基于LLVM编译器基础设施的符号虚拟机,它的设计目标是为程序执行提供广泛的支持,尤其是在自动化验证和测试领域。该项目提供了两个主要组件: 核心符号虚拟机引擎,能够以支持符号值的方式执行LLVM位码模块。 POSIX/Linux的模拟层,专注于支持uClibc...
KLEE--KQuery
fjnuzs的博客
03-22 1045
 KQuery是约束表达式和约束查询的文本表示,Kleaver约束求解器以其为输入。该语言能够表示基于位向量和数组的自由量词公式,它可以直接支持位向量的标准操作。该语言具有很好的读写交互,并且和C++ API有非常紧密的关系。    因为是一边看一边翻译,所以有些不理解,也就只能字面意义了。文档不够详细,也没有例子,后面有时间搞清楚了我会在进行文档的修改。    原文:http://klee....
KLEE安装
fjnuzs的博客
03-22 2941
下面这段文字翻译于http://klee.github.io/getting-started/    KLEE搭建于LLVM平台,下面这些安装步骤基于LLVM 2.9(稳定版本),基于新版本LLVM 3.4还处于试验阶段参考 click here。实际上现在LLVM都已经是4版本了。1 依赖软件安装:包括g++, curl, dejagnu, subversion, bison, flex, ...
软工大牛Hakjoo Oh及其顶会论文解读
the Blog of 等不到天亮丶等时光
08-03 823
本文介绍软件工程领域大牛**Hakjoo Oh** ,并且分析其今年顶会论文**"MemFix: Static Analysis-Based Repair of Memory Deallocation Errors for C"**
【每月总结】2021年6月
xx790008409的博客
07-29 390
文章目录2021年5月和6月知识积累做的事和想法鸡汤文末 本文旨在将每月的所做的事情、想法和积累做个总结,以反思自己在过去的不足之处,以指导后续前进方向。此博客可能长期维护,具体不定,先记录试试。 以下每月的内容包括:1. 知识积累模块;2. 所做事情模块和想法模块;3. 鸡汤模块 2021年5月和6月 知识积累 英语表达: a significant level of … We derive insights … Various approaches have been proposed in th
KLEE
10-24
KLEE通过将程序执行路径转化为数学问题,利用SAT(布尔满足性)和SMT( satisfiability modulo theories,即基于理论的满足性)求解器来探索程序的可能行为,从而发现未被常规测试覆盖的代码路径。 在软件工程领域...
klee12.github.io:2021年Spring地理817工作文件夹
04-14
【标题】"klee12.github.io:2021年Spring地理817工作文件夹"揭示了这是一个与地理817课程相关的项目,很可能是一个个人或团队在2021年春季学期用于教学、学习或研究的在线平台。这个平台可能是基于GitHub的网页项目...
基于性质制导符号执行的Linux驱动程序缺陷检测研究.pdf
09-06
为了实现这个框架,作者们基于LLVM(Low Level Virtual Machine)和KLEE(一个开源符号执行引擎)进行了实际的实现。LLVM是一个编译器基础设施,而KLEE则用于进行符号执行。通过在真实世界中的Linux驱动程序上进行...
用于漏洞检测的基于静态叉的符号执行
03-12
研究论文中提到的KLEE是一个开源符号执行引擎,被广泛用于软件漏洞检测和程序分析。 符号执行技术最初由James C. King在1976年提出。在基于叉的符号执行中,使用符号值作为输入来执行目标程序,并在执行过程中...
Concolic测试
08-05
Concolic测试的技术:Concolic测试
symbolic-analysis:定制的符号分析以查找指针分析错误
04-28
构建zesti / klee sudo yum install g++ curl dejagnu subversion bison flex bc libcap-devel export PATH=$PATH:/home/sdasgup3/llvm/llvm-gcc4.2-2.9-x86_64-linux/bin/ /*To Find the tarball @ http://llvm.org/releases/2.9/llvm-gcc4.2-2.9-x86_64-linux.tar.bz2 */ 编译llvm 2.9 tar zxvf llvm-2.9.tgz cd llvm-2.9 ./configure --enable-optimized --enable-assertions make 建立stp tar xzfv stp-r940.tgz /*Find the tarba
2020 S&P-SAVIOR: Towards Bug-Driven Hybrid Testing
席八
03-06 1992
摘要:混合测试结合了模糊测试和协同执行。它利用模糊测试来测试容易到达的代码区域,并使用concolic执行来探索由复杂分支条件保护的代码块。因此,与模糊测试或协同执行相比,混合测试能够深入到程序状态空间。最近,混合测试取得了重大进展。然而,其以代码覆盖率为中心的设计在漏洞检测方面效率低下。首先,它盲目地为concolic执行选择种子,并旨在不断探索新代码。然而,正如统计数据所显示的,大部分探索的代码通常都没有bug。因此,在混合测试期间对代码的每个部分给予同等关注是一种非最优策略。它将实际漏洞的检测速度降低
程序分析-klee工具分析
qq_44370676的博客
10-18 2512
klee的简单介绍
符号化执行引擎对比
m0_37907383的博客
04-22 1923
随着fuzz技术的发展,发现以AFL为代表coverage-guided的fuzz引擎达到一个瓶颈,因为是盲目的,所以现在有很流行的方法——加入符号化执行。比如Driller、QSYM、和我讲过的SAVIOR,这三个都很大的提高了fuzz的效率。但是符号化执行也是和fuzz一样复杂而内容丰富的领域,这里就把最近看的一个文章跟大家分享下,简单介绍几个流行的符号化执行。 [1]Roberto Bal...
KLEE软件分析
热门推荐
happygogf的专栏
01-27 1万+
KLEE软件分析 1 klee概述 1.1 符号执行概述 符号执行技术使用符号值代替数字值执行程序,得到的变量的值是由输入变 量的符号值和常量组成的表达式。符号执行技术首先由King在1976年提出 ,经过三十多年的发展,现在仍然被广泛研究,它在软件测试和程序验证中发挥着重 要作用。符号执行是一种重要的形式化方法和静态分析技术,它使用数学和逻辑 首先定义一些基本概念。程序
向着Concolic测试的最优策略迈进-Towards Optimal Concolic Testing-wcventure译
wcventure的博客
08-22 2344
Towards Optimal Concolic Testing Towards Optimal Concolic Testing. In ICSE ‘18: ICSE ‘18: 40th. International Conference on Software Engineering , May 27-June 3, 2018,. 1. 最优策略的定义(根据程序路径的概率和约束求解的成本)...
Ubuntu 14.04安装KLEE及GNC代码分析指南
本文将详细介绍如何在Ubuntu 14.04系统上安装KLEE(一个基于LLVM的符号执行引擎)以及如何使用它来分析GNC代码。KLEE是一款强大的动态程序分析工具,用于找出软件中的错误和漏洞,通过执行程序路径上的所有可能分支...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

破落之实

你的鼓励将是我创作的最大动力

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值