Linear-time Temporal Logic guided Greybox Fuzzing

The LTL-Fuzzer tool, built on top of the AFL fuzzer, is found to be effective in detecting bugs in well-known protocol implementations, such as OpenSSL and Telnet. We use LTL-Fuzzer to reproduce known vulnerabilities (CVEs), to find new or zero-day bugs by checking properties extracted from RFCs (for which CVEs have been assigned), and to find violations of both safety as well as liveness properties in real-world protocol implementations. This package contains the LTL-Fuzzer tool and data-set in our experiments.