Advancing fuzzing with unbiased random generator and Feistel network-based mutations
Bamohabbat Chafjiri, Sadegh and Legg, Phil and Hong, Jun and Tsompanas, Michail-Antisthenis (2026) Advancing fuzzing with unbiased random generator and Feistel network-based mutations. Information and Software Technology, 196. p. 108140. ISSN 0950-5849
Preview |
Text
1-s2.0-S0950584926001291-main.pdf - Published Version Available under License Creative Commons Attribution. Download (3MB) |
Abstract
Context:
This research tackles challenges in traditional fuzzing, such as limited coverage, instability, and inefficiency in bug discovery. We propose two novel models and their combination to enhance mutation processes and improve its reliability through unbiased randomisation, building on cryptographic techniques from our prior work. To our knowledge, we are the first to apply this approach to AFL++, extending Feistel-inspired mutation and high-performance randomisation to generate high-quality test cases, with potential to attract attention in the fuzzing community.
Objectives:
• Integrate and assess Feistel-inspired mutations’ impact on AFL++ performance, focusing on code coverage and stability.
• Integrate the Permuted Congruential Generator (PCG) into AFL++ and evaluate its performance compared to traditional random number generators (RNGs).
• Evaluate a hybrid model combining Feistel and PCG randomness for better stability and coverage.
Methods:
We enhance AFL++ with algorithmic improvements and RNGs modifications. Our models include:
• CAFL++ (Cryptographic-AFL++): Integrates Feistel-inspired transformations for improved coverage.
• PCGAFL++: Refines the AFL’s RNG with PCG to reduce bias.
• CPCGAFL++: Combines Feistel-inspired swaps and PCG-based RNG for a robust fuzzing approach.
Performance was analysed using metrics like Code Coverage and the Vargha-Delaney_A12 statistic across 20 Fuzzbench targets, and bug discovery on three targets.
Results:
Our models showed significant improvements over AFL++. CAFL++ outperformed AFL++ in 75% of test targets, offering better code coverage and stability. PCGAFL++ surpassed AFL++ in 60% of targets by enhancing randomness, resulting in more efficient fuzzing. CPCGAFL++ demonstrated improved stability and enhanced bug discovery performance, while achieving code coverage comparable to AFL++. These results highlight the key improvements introduced by our two models for fuzz testing.
Conclusion:
Our models advance fuzzing by improving code coverage and stability. Integrating Feistel-inspired swaps and PCG-based RNG overcomes traditional fuzzing limitations, offering a more efficient and reliable method. These models represent a step forward in fuzzing techniques, influencing both academic research and industrial practices.
| Item Type: | Article |
|---|---|
| Identification Number: | 10.1016/j.infsof.2026.108140 |
| Dates: | Date Event 31 March 2026 Accepted 20 April 2026 Published Online |
| Uncontrolled Keywords: | Fuzzing, AFL++, Feistel-besed mutation, Unbiased random generator, Permuted Congruential Generator |
| Subjects: | CAH11 - computing > CAH11-01 - computing > CAH11-01-01 - computer science |
| Divisions: | Architecture, Built Environment, Computing and Engineering > Computer Science |
| Depositing User: | Gemma Tonks |
| Date Deposited: | 28 Apr 2026 12:32 |
| Last Modified: | 28 Apr 2026 12:32 |
| URI: | https://www.open-access.bcu.ac.uk/id/eprint/16995 |
Actions (login required)
 |
View Item |
Tools
Tools
