18. #include <stdio.h>
#include <string.h>
void process_password()
{
char enterpassword[2];
printf("Do you want to enter a password?:");
scanf("%s", enterpassword);
if(strcmp(enterpassword, "N") == 0)
return;
printf("You entered:");
printf(enterpassword);
printf("n");
char password[256];
printf("Enter you password:");
scanf("%s", password);
if(strcmp(password, "S3cr3tP@ssw0rd!") == 0)
{
printf("Correct!n");
}
else
{
printf("Incorrect.n");
}
}
int main(int argc, char** argv)
{
process_password();
return 0;
}
コードカバレッジ
19. Directed Greybox Fuzzingと深層学習
❏In this paper, we introduce Directed Greybox Fuzzing (DGF) which generates inputs with
the objective of reaching a given set of target program locations efficiently.
“Directed Greybox Fuzzing” – CCS17
❏In this paper, we propose a deep-learning-based approach to predict the reachability of
inputs (i.e., miss the target or not) before executing the target program, helping DGF
(directed grey-box fuzzing) filtering out the unreachable ones to boost the performance
of fuzzing.
“FuzzGuard: Filtering out Unreachable Inputs in Directed Grey-box Fuzzing through Deep
Learning” – Usenix Security 2019