The reviewed record of science sign in
Pith

arxiv: 2411.18143 · v1 · pith:P6IMMGKT · submitted 2024-11-27 · cs.CR · cs.SE

Harnessing Large Language Models for Seed Generation in Greybox Fuzzing

Reviewed by Pith T0 review T1 audit T2 compute T3 formal T4 kernel pith:P6IMMGKTrecord.jsonopen to challenge →

classification cs.CR cs.SE
keywords fuzzinggenerationllmsseedmindtestgreyboxseedcase
0
0 comments X
read the original abstract

Greybox fuzzing has emerged as a preferred technique for discovering software bugs, striking a balance between efficiency and depth of exploration. While research has focused on improving fuzzing techniques, the importance of high-quality initial seeds remains critical yet often overlooked. Existing methods for seed generation are limited, especially for programs with non-standard or custom input formats. Large Language Models (LLMs) has revolutionized numerous domains, showcasing unprecedented capabilities in understanding and generating complex patterns across various fields of knowledge. This paper introduces SeedMind, a novel system that leverages LLMs to boost greybox fuzzing through intelligent seed generation. Unlike previous approaches, SeedMind employs LLMs to create test case generators rather than directly producing test cases. Our approach implements an iterative, feedback-driven process that guides the LLM to progressively refine test case generation, aiming for increased code coverage depth and breadth. In developing SeedMind, we addressed key challenges including input format limitations, context window constraints, and ensuring consistent, progress-aware behavior. Intensive evaluations with real-world applications show that SeedMind effectively harnesses LLMs to generate high-quality test cases and facilitate fuzzing in bug finding, presenting utility comparable to human-created seeds and significantly outperforming the existing LLM-based solutions.

This paper has not been read by Pith yet.

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.

Forward citations

Cited by 2 Pith papers

Reviewed papers in the Pith corpus that reference this work. Sorted by Pith novelty score.

  1. Contextualizing Sink Knowledge for Java Vulnerability Discovery

    cs.CR 2026-04 unverdicted novelty 6.0

    GONDAR finds four times more Java vulnerabilities than Jazzer by identifying reachable sinks via CWE scanning and LLM filtering then using collaborative exploration and exploitation agents with a coverage-guided fuzzer.

  2. Evaluating the Effectiveness of LLMs in Aiding Compliance Testing of PKCS#1-v1.5

    cs.CR 2026-06 unverdicted novelty 4.0

    LLM-assisted mutation testing reproduced 10 of 13 known PKCS#1 v1.5 violation categories and one new discrepancy but was limited by 82.5% hallucination rate in generated scripts.