Addison Crump
Addison Crump
Addison Crump
My name is Addison Crump. I'm a Texas A&M University graduate (class of '21) and currently a Ph.D. candidate at CISPA. I'm also a member of secret.club and a maintainer of LibAFL.
Latest Posts
This was a presentation offered at the Search-Based and Fuzz Testing Workshop in 2025. SBFT'25 slides provided here. Recording is available on YouTube. Abstract Following the SBFT fuzzing competition, the results were analyzed and a...
Publication is available via the IEEE publication.
Video is not available as the presentation was provided privately. Presentation slides are available on Google Slides. Some formatting is incorrect due to a change of software. Abstract The club often hears about public sector, military,...
Publication is provided on the conference website. Source code and other artifacts available online.
This page comes about because of two things: an assignment for my computer graphics course, and a bit of inspiration from a computer graphics YouTuber, acerola, who recently did some work with fractal motion. Though the page was actually...
In the past year, we've had a few discussions in my research group about joining various competitions, such as AIxCC, Pwn2Own, and others. These competitions are testing grounds for many of our research topics, as our research group...
I was recently invited to speak at an automotive cybersecurity conference by Vector, a development group for cyberphysical systems1. Specifically, I was invited by Dr.rer.nat. Till Neudecker to give a talk about fuzzing as it has...
Communication in testing topics is hard. Communicating about fuzzing in particular is hard, as it's often seen as a magical way to solve a variety of problems in testing -- it's very simple to develop, it's automated, and it has a good...
I've been thinking a lot recently about what it means to do research in fuzzing. Most of what we do is a loose collection of "things we know to generally work pretty well" but without true understanding of why. I do often wonder what...
A two-part blog series posted on secret.club. Part 1 concerns the regex crate from Rust, investigating how limitations of original harnesses prevented the discovery of bugs which were shallow under grammar testing. We then discuss how...
Video is available on YouTube. Presentation slides are available on Google Slides. Abstract Fuzzing is beautiful: powerful, automated, simple, elegant, and effective. Touted as one of, if not the, most powerful testing strategy...
Publication is provided on the primary author's website. Source code and other artifacts available online.
This was a presentation offered at the Search-Based and Fuzz Testing Workshop and at the Artificial Intelligence in Software Testing in 2024. SBFT'24 slides provided here. Tutorials information offered by SBFT'24. AIST'24 slides provided...
Talk is available online on YouTube. Slides are available on Google Slides. Abstract Fuzzing is a well-researched and understood concept, but so little of its potential is leveraged. Throughout the talk, I introduce key features of...
Recording. Presentation slides available via Google Slides. Fahrplan entry on CCC website. Blurb The maintainers of the AFLplusplus open-source project show crazy new ways to (ab)use QEMU to explore difficult, binary-only targets through...