基于改进轮盘赌策略的反馈式模糊测试方法

针对随机模糊测试方法测试盲目效率低下的问题，提出一种反馈式模糊测试方法，目的是通过流程优化来提高测试效果。首先，通过网络爬虫收集原始样本文件，确保原始样本的多样性。其次，通过代码覆盖率分析来从大量样本文件中筛选用于变异的最佳种子文件，在保证足够的测试空间的同时避免冗余测试。接下来通过变异种子文件的部分比特来生成测试用例，并根据测试结果基于改进轮盘赌策略不断调优种子文件的变异范围，以期发现尽可能多的软件故障。实现了一个原型系统OSSRWSFuzzer，在实验中发现了国产软件WPS Office的56个故障，体现了较强的漏洞检测能力。

Feedback Fuzzing Based on Improved Roulette Wheel Selection Strategy

Aiming to solve the problem of blindness and poor efficiency of random fuzzing, a feedback fuzzing method was proposed, with the purpose of improving test effect through process optimization. Firstly, original sample files were collected via a web crawler to ensure the diversity of them. Secondly, the best seed file was selected from a large number of sample files, to avoid redundant testing while ensuring adequate testing space. Next, test cases were generated by mutating some bits of the seed file, and the mutation range was continuously adjusted according to the testing result based on improved roulette wheel selection strategy, in order to find as many software failures as possible. A prototype system named OSSRWSFuzzer was implemented, which had found 56 failures of the domestic software WPS Office in experiments, reflecting its strong vulnerability detection capability.