Alessandro Mantovani's research while affiliated with EURECOM and other places
What is this page?
This page lists the scientific contributions of an author, who either does not have a ResearchGate profile, or has not yet added these contributions to their profile.
It was automatically created by ResearchGate to create a record of this author's body of work. We create such pages to advance our goal of creating and maintaining the most comprehensive scientific repository possible. In doing so, we process publicly available (personal) data relating to the author as a member of the scientific community.
If you're a ResearchGate member, you can follow this page to keep up with this author's work.
If you are this author, and you don't want us to display this page anymore, please let us know.
It was automatically created by ResearchGate to create a record of this author's body of work. We create such pages to advance our goal of creating and maintaining the most comprehensive scientific repository possible. In doing so, we process publicly available (personal) data relating to the author as a member of the scientific community.
If you're a ResearchGate member, you can follow this page to keep up with this author's work.
If you are this author, and you don't want us to display this page anymore, please let us know.
Publications (11)
This report describes the artifacts of the “Dissecting American Fuzzy Lop – A FuzzBench Evaluation” paper. The artifacts are available online at https://github.com/eurecom-s3/dissecting_afl and archived at https://doi.org/10.6084/m9.figshare.21401280 and consists in the produced code, the setup to run the experiments in FuzzBench and the generated...
AFL is one of the most used and extended fuzzer, adopted by industry and academic researchers alike. While the community agrees on AFL’s effectiveness at discovering new vulnerabilities and at its outstanding usability, many of its internal design choices remain untested to date. Security practitioners often clone the project “as-is” and use it as...
AFL is one of the most used and extended fuzzer, adopted by industry and academic researchers alike. While the community agrees on AFL's effectiveness at discovering new vulnerabilities and at its outstanding usability, many of its internal design choices remain untested to date. Security practitioners often clone the project "as-is" and use it as...
Recent advances in fuzz testing have introduced several forms of feedback mechanisms, motivated by the fact that for a large range of programs and libraries, edge-coverage alone is insufficient to reveal complicated bugs. Inspired by this line of research, we examined existing program representations looking for a match between expressiveness of th...
AFL is one of the most used and extended fuzzing projects, adopted by industry and academic researchers alike. While the community agrees on AFL's effectiveness at discovering new vulnerabilities and at its outstanding usability, many of its internal design choices remain untested to date. Security practitioners often clone the project "as-is" and...
An open research problem on malware analysis is how to statically distinguish between packed and non-packed executables. This has an impact on antivirus software and malware analysis systems, which may need to apply different heuristics or to resort to more costly code emulation solutions to deal with the presence of potential packing routines. It...
Citations
... That is, once a program element is saturated, there is little extra information available [31]. Many fuzzers [4,32,3], include intelligence to craft inputs (e.g., calling an API with invalid values) which, while important, is invisible if using coverage for fuzzer comparison. ...
Reference: How to Compare Fuzzers
![[object Object]](https://i1.rgstatic.net/ii/profile.image/680555284815874-1539268432927_Q64/Andrea-Fioraldi.jpg)
![[object Object]](https://i1.rgstatic.net/ii/profile.image/272396666011655-1441955834570_Q64/Davide-Balzarotti.jpg)
... To avoid missing sensitive behaviors, we set a timer of 10 min for each execution. Although most samples exhibit evasive behaviors within the first 2 min [33], complex samples may perform more checks and behaviors. Additionally, it is worth noting that DBI and callbacks may incur overhead. ...
![[object Object]](https://i1.rgstatic.net/ii/profile.image/277705527447585-1443221565562_Q64/Yufei-Han-3.jpg)
... Particularly, entropy features are based on the entropy computation of the file or some of its areas. Bearing in mind that benign files tend to have low entropy values, whereas obfuscated or packed files tend to have high entropy values [23]. ...
![[object Object]](https://i1.rgstatic.net/ii/profile.image/1030528639713280-1622708582251_Q64/Simone-Aonzo-2.jpg)
![[object Object]](https://i1.rgstatic.net/ii/profile.image/272397672644648-1441956074932_Q64/Xabier-Ugarte-Pedrero.jpg)
![[object Object]](https://i1.rgstatic.net/ii/profile.image/11431281169175363-1687253511135_Q64/Alessio-Merlo.jpg)
