Fishfuzz: Catch Deeper Bugs by Throwing Larger Nets [pdf]

FISHFUZZ is a new input prioritization strategy for greybox fuzzers that uses a multi-distance metric, dynamic target ranking, and smart queue culling algorithm to prioritize seeds towards interesting locations and achieve more comprehensive program testing. It outperforms modern directed greybox fuzzers and state-of-the-art coverage guided fuzzers in terms of coverage and bug finding. [summary]

