Enabling vulnerability discovery automation by integrating fuzzers and debuggers

During the last years, 0-days vulnerabilities have represented a real threat for companies, governments, and individuals. The software industry is investing many efforts to detect these vulnerabilities in the early stages of the software development life cycle (SDLC) by introducing Dev-Sec-Ops methodologies. However, these are often expensive in terms of time and resources that the companies should invest. This Master Thesis aims to reduce these costs by improving fuzzing, an indispensable technique for 0-day vulnerability discovery. As a possible solution, we explore the idea of integrating fuzzing tools with debuggers and automate two steps of the fuzzing process: the crash triaging and the oracle's development. As a result, the triaging time decreases and the quality of vulnerabilities found improves. Our efforts are limited to Black Box fuzzing lead with Defensics, a commercial fuzzing tool developed by Synopsys Inc.