Skip to content

Release Notes

Duy Tai Nguyen edited this page Jun 28, 2019 · 2 revisions

Summary

Sfuzz is a fuzzer for smart contracts on Ethereum platform. It is based on a novel adaptive fuzzing strategy which combines the strategy in the AFL (american fuzzy lop) fuzzer and a lightweight multi-objective adaptive strategy targeting those hard-to-cover branches. It has an extensible design, which allows it to support different vulnerabilities and different Ethereum versions with ease. To automatically test smart contracts, we solved the following three problems:

  • The test automation problem (i.e., how to automatically run the test cases),
  • The test generation problem (i.e., what test cases do we generate, among all the possible ones),
  • The oracle problem (i.e., what are regarded as vulnerabilities).

We have tested 50 thousand contracts and the experiment results reveal that sFuzz is the most efficient fuzzer for smart contracts on the Ethereum platform. It run faster, has higher coverage and discovers more vulnerabilities than state-of-the-art tools.

Features

sFuzz currently supports scanning 9 vulnerabilities:

  • Gasless Send
  • Exception Disorder
  • Block number Dependency
  • Timestamp Dependency
  • Reentrancy
  • Integer Overflow
  • Integer Underflow
  • Dangerous Delegatecall
  • Freezing Ethereum

sFuzz also records other useful information which provide developers a comprehensive view of the scanning smart contract. The information includes control flow, branch coverage, etc. In the future, sFuzz will definitely support more update-to-date vulnerabilities.

Changelog

0.0.1 - Released

  • Changed: 49675da Updating oracles and refactor
  • Added: c8f8010 Adding oracles
  • Added: 6b90b05 Loading contracts from assets folder
  • Added: 58ec879 Displaying stats
  • Added: e1063f0 Encoding ABI
  • Added: 97adef6 Mutation stages
  • Added: 4d125ed Adding Google test framework
Clone this wiki locally