Search Results for author:
Found 6 papers, 1 papers with code
Anomalicious: Automated Detection of Anomalous and Potentially Malicious Commits on GitHub
Security is critical to the adoption of open source software (OSS), yet few automated solutions currently exist to help detect and prevent malicious contributions from infecting open source repositories.
Software Engineering
Universal Policies for Software-Defined MDPs
We introduce a new programming paradigm called oracle-guided decision programming in which a program specifies a Markov Decision Process (MDP) and the language provides a universal policy.
Pythia: Grammar-Based Fuzzing of REST APIs with Coverage-guided Feedback and Learning-based Mutations
This paper introduces Pythia, the first fuzzer that augments grammar-based fuzzing with coverage-guided feedback and a learning-based mutation strategy for stateful REST API fuzzing.
REST-ler: Automatic Intelligent REST API Fuzzing
A Swagger specification describes how to access a cloud service through its REST API (e. g., what requests the service can handle and what responses may be expected).
Software Engineering
Deep Reinforcement Fuzzing
Fuzzing is the process of finding security vulnerabilities in input-processing code by repeatedly testing the code with modified inputs.
Learn&Fuzz: Machine Learning for Input Fuzzing
Fuzzing consists of repeatedly testing an application with modified, or fuzzed, inputs with the goal of finding security vulnerabilities in input-parsing code.
