This repository serves as a curated collection of research papers on fuzzing, categorized by conference and subject area. It aims to provide a comprehensive overview of the state-of-the-art in fuzzing techniques for security researchers, software engineers, and academics interested in automated software testing and vulnerability discovery.

How It Works

The repository organizes papers by their publication venue (e.g., S&P, CCS, NDSS) and by specific fuzzing topics such as differential fuzzing, kernel fuzzing, hybrid fuzzing, and input-aware fuzzing. It includes abstracts, reading notes, and sometimes links to slides or code for each paper, offering a structured way to explore advancements in the field.

Highlighted Details

• Comprehensive Categorization: Papers are meticulously classified by conference and subject, allowing users to quickly find relevant research.
• Diverse Fuzzing Techniques: Covers a wide array of fuzzing strategies, including coverage-guided, symbolic execution-based, grammar-aware, and hardware-assisted methods.
• Practical Applications: Highlights papers that demonstrate real-world bug discovery in operating system kernels, drivers, IoT devices, and popular applications, often with CVE assignments.
• State-of-the-Art Comparison: Many entries include comparisons against other leading fuzzing tools, providing insights into performance and effectiveness.

Maintenance & Community

This repository appears to be a static collection of research papers, with no explicit mention of active maintenance or community interaction channels.

Licensing & Compatibility

The repository itself does not specify a license. The content consists of links to and summaries of academic papers, which are typically governed by their respective publication licenses.

Limitations & Caveats

This repository is a curated list of papers and does not provide any executable tools or codebases for fuzzing. The content is focused on research findings rather than practical implementation guidance.