Personalized Fuzzing: A Case Study with the FANDANGO Fuzzer on a GNSS Module
Fuzzing is a widely used technique for uncovering vulnerabilities in software systems, but traditional fuzzers often struggle with generating valid and meaningful test cases for complex input formats. Grammar-based fuzzers address this issue by ensuring syntactic correctness, but they frequently lack fine-grained control over generated inputs to trigger specific behaviors. In this paper, we demonstrate the flexibility and effectiveness of FANDANGO, a state-of-the-art grammar-based fuzzer that incorporates constraint solving to produce 100% valid inputs while also guiding the generation process toward desired edge cases. Using a GNSS (Global Navigation Satellite System) module as a case study, we showcase how FANDANGO enables the specification of constraints to explore the module’s behavior. Our experiments highlight FANDANGO’s ability to generate targeted test cases that expose potential weaknesses. This study reinforces the practical applicability of constraint-guided grammar fuzzing in security testing and reliability analysis.
Sat 28 JunDisplayed time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change
09:00 - 10:30 | |||
09:00 10mDay opening | Welcome FUZZING | ||
09:10 50mKeynote | Keynote: Constraining Fuzzing without Paying Too Much FUZZING Miryung Kim UCLA and Amazon Web Services | ||
10:00 10mTalk | Personalized Fuzzing: A Case Study with the FANDANGO Fuzzer on a GNSS Module FUZZING Stephan Neuhaus ZHAW School of Engineering, José Antonio Zamudio Amaya CISPA Helmholtz Center for Information Security, Andreas Zeller CISPA Helmholtz Center for Information Security | ||
10:10 10mTalk | Hybrid Fuzzing of Infrastructure as Code Programs FUZZING Emilio Coppa LUISS University, Daniel Sokolowski University of St. Gallen, Guido Salvaneschi University of St. Gallen | ||
10:20 10mTalk | Towards Fuzzing Zero-Knowledge Proof Circuits FUZZING Stefanos Chaliasos Imperial College London, Imam Al-Fath ZKSecurity, Alastair F. Donaldson Imperial College London |
Cosmos 3C is the third room in the Cosmos 3 wing.
When facing the main Cosmos Hall, access to the Cosmos 3 wing is on the left, close to the stairs. The area is accessed through a large door with the number “3”, which will stay open during the event.