FSE 2025
Mon 23 - Fri 27 June 2025 Trondheim, Norway
co-located with ISSTA 2025
Mon 23 Jun 2025 15:10 - 15:20 at Cosmos 3C - Fuzzing 1 Chair(s): Shin Hwei Tan

Web APIs, like for example REST, GraphQL and RPC APIs, are widely used in industry. Due to their importance, a lot of research work has been carried out in the recent years on test automation in this domain. Several fuzzers have been developed and evaluated in the research literature. EvoMaster is a state-of-the-art, searchbased fuzzer for Web APIs. It is in active development, since 2016, and it is used in several enterprises around the world, like for example at Meituan and Volkswagen. In this paper, we present and discuss its most recent technical features, aimed at widening its adoption in industry. In particular, we discuss its release on Docker, its use in Continuous Integration environments such as GitHub Actions, and the support for test case outputs in Python. This enables us a better technology transfer from academic results to industrial practice. A video showcasing these new features is currently available at: https://youtu.be/l1ybs7SjvcA

Mon 23 Jun

Displayed time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change

14:00 - 15:30
Fuzzing 1Demonstrations / Research Papers / Journal First at Cosmos 3C
Chair(s): Shin Hwei Tan Concordia University
14:00
20m
Talk
Liberating libraries through automated fuzz driver generation: Striking a Balance Without Consumer Code
Research Papers
Flavio Toffalini EPFL, Switzerland and Ruhr-Universität Bochum, Germany, Nicolas Badoux EPFL, Zurab Tsinadze EPFL, Mathias Payer EPFL
DOI
14:20
20m
Talk
Presentation Proposal for: Finding Information Leaks with Information Flow Fuzzing
Journal First
Bernd Gruner German Aerospace Center (DLR), Institute of Data Science, Clemens-Alexander Brust German Aerospace Center (DLR), Andreas Zeller CISPA Helmholtz Center for Information Security
14:40
20m
Talk
MendelFuzz: The Return of the Deterministic Stage
Research Papers
Han Zheng EPFL, Flavio Toffalini EPFL, Switzerland and Ruhr-Universität Bochum, Germany, Marcel Böhme MPI for Security and Privacy, Mathias Payer EPFL
DOI
15:00
10m
Talk
PeachCI: Scalable Continuous Integration of Generation-Based Protocol Fuzzing
Demonstrations
Wanli Chen Central South University, Yuanliang Chen Tsinghua University, Fuchen Ma Tsinghua University, Ruikang Peng Central South University, Qi Xu Tsinghua University, Yu Jiang Tsinghua University, Qiang Fu Central South University, Heyuan Shi Central South University
15:10
10m
Talk
Widening The Adoption of Web API Fuzzing: Docker, GitHub Action and Python Support for EvoMaster
Demonstrations
Andrea Arcuri Kristiania University of Applied Sciences, Philip Garrett Kristiania University of Applied Sciences, Juan Pablo Galeotti University of Buenos Aires, Man Zhang Beihang University, China

Information for Participants
Mon 23 Jun 2025 14:00 - 15:30 at Cosmos 3C - Fuzzing 1 Chair(s): Shin Hwei Tan
Info for room Cosmos 3C:

Cosmos 3C is the third room in the Cosmos 3 wing.

When facing the main Cosmos Hall, access to the Cosmos 3 wing is on the left, close to the stairs. The area is accessed through a large door with the number “3”, which will stay open during the event.

:
:
:
: