Towards Better Semantics Exploration for Browser Fuzzing

Explore an innovative approach to enhancing browser fuzzing through a 17-minute video presentation from the OOPSLA2 2023 conference. Delve into the challenges of testing complex browser semantics and learn about SaGe, an automated method that utilizes production-context sensitive grammars (PCSGs) to improve semantic exploration. Discover how this technique outperforms existing browser fuzzers, achieving significant improvements in edge coverage, semantic correctness, and bug discovery across Chrome, Safari, and Firefox. Gain insights into the process of extracting and enhancing context-free grammars from W3C standards to create more effective PCSGs for generating semantically-rich inputs. Understand the implications of this research for browser security and the potential for identifying critical vulnerabilities in mainstream web browsers.