Proj CDeepFuzz Paper Reading: NYX: Greybox Hypervisor Fuzzing using Fast Snapshots and Affine Types

Abstract

背景：hypervisor(virtual machine monitor, VMM) 保障了不同虚拟机之间的安全隔离(security boundaries)
用户：攻击场景：在云服务上运行自身的VM instances, 提升权限

本文：Nyx
目的：coverage guided hypervisor fuzzer
method: 1. fast snapshot restoration mechanism 2. mutation based on DAG 3. affine types to express the complex interactions

效果：

1. 在简单targets上需要比其他hypervisor fuzzers更长（长几分钟）的时间
2. 在复杂设备上outperform
3. 44 bugs, +22 CVEs

本栏目推荐文章
• VMware ESXi 8.0U2 下载 - 领先的裸机 Hypervisor (Custom Image update)
• backblaze b2通过cli下载大文件快照snapshots
• Proj CDeepFuzz Paper Reading: POLYCRUISE: A Cross-Language Dynamic Information Flow Analysis
• Proj CDeepFuzz Paper Reading: NYX: Greybox Hypervisor Fuzzing using Fast Snapshots and Affine Types
• VMware ESXi 7.0 Update 3o 下载 - 领先的裸机 Hypervisor (重大更新)
• Mac故障排查系列：redis删除key报错MISCONF Redis is configured to save RDB snapshots, but it's currently unable to persist to disk.
• VMware ESXi 8.0U2 发布 - 领先的裸机 Hypervisor
• Proj CDeepFuzz Paper Reading: Metamorphic Testing of Deep Learning Compilers
• Proj CDeepFuzz Paper Reading: A Comprehensive Study of Deep Learning Compiler Bugs
• Proj CDeepFuzz Paper Reading: DeepMutation: Mutation Testing of Deep Learning Systems

Hypervisor CDeepFuzz Snapshots Greybox Fuzzinghypervisor cdeepfuzz snapshots greybox directed greybox fuzzing greybox fuzzing snapshots hypervisor hypervisor简介 exercise1 exercise fuzzing 13288 exercise2 cve exercise fuzzing redis configured snapshots misconf