SIoTFuzzer: Fuzzing Web Interface in IoT Firmware via Stateful Message Generation

Cyber attacks against the web management interface of Internet Things (IoT) devices often have serious consequences. Current research uses fuzzing technologies to test interfaces IoT devices. These fuzzers generate messages (a case sent from client server its functionality) without considering their dependency, which is unlikely bypass early check server. invalid cases significantly reduce efficiency fuzzing. To overcome this problem, we propose a stateful message generation (SMG) mechanism for SMG addresses two problems in First, retrieve dependency by using front-end analysis and status analysis. dependent messages, can easily check, are used as valid seed. Second, adopt multi-message seed format preserve when mutating get case, so that state make test. Message preservation implemented our proposed parameter mutation structural methods. We implement fuzzer, SIoTFuzzer, applies firmware on latest Linux-based simulation tool, FirmAE. nine including router an IP camera vulnerability detection mechanism. Our evaluation results show (1) SIoTFuzzer capable finding real-world vulnerabilities devices; (2) effective it enables Boofuzz popular protocol fuzzer) find command injection cross-site scripting (XSS) vulnerabilities; (3) compared FirmFuzz, found all benchmarks, while FirmFuzz only four—the tool increased 20.57% average.