Addison Crump

My name is Addison Crump. I'm a Texas A&M University graduate (class of '21) and currently a Ph.D. candidate at CISPA. I'm also a member of secret.club and a maintainer of LibAFL.

Personal

Technology

addisoncrump.info

RSS

Latest Posts

SBFT'25: Fuzzing Competition Results

Addison Crump · 11mo

This was a presentation offered at the Search-Based and Fuzz Testing Workshop in 2025. SBFT'25 slides provided here. Recording is available on YouTube. Abstract Following the...

TAMU Cybersecurity Club: Security Reserch in Academia

Addison Crump · 12mo

Video is not available as the presentation was provided privately. Presentation slides are available on Google Slides. Some formatting is incorrect due to a change of software....

TWINFUZZ: Differential Testing of Video Hardware Acceleration Stacks

Addison Crump · 14mo

Publication is provided on the conference website. Source code and other artifacts available online.

Playing with Brownian Motion

Addison Crump · 14mo

This page comes about because of two things: an assignment for my computer graphics course, and a bit of inspiration from a computer graphics YouTuber, acerola, who recently did...

Why I don't write exploits*

Addison Crump · 18mo

In the past year, we've had a few discussions in my research group about joining various competitions, such as AIxCC, Pwn2Own, and others. These competitions are testing grounds...

Lessons Learned from Automotive Cybersecurity

Addison Crump · 18mo

I was recently invited to speak at an automotive cybersecurity conference by Vector, a development group for cyberphysical systems1. Specifically, I was invited by Dr.rer.nat....

Fuzzers vs Games

Addison Crump · 19mo

Communication in testing topics is hard. Communicating about fuzzing in particular is hard, as it's often seen as a magical way to solve a variety of problems in testing -- it's...

Thinking about Fuzzer Evaluation

Addison Crump · 20mo

I've been thinking a lot recently about what it means to do research in fuzzing. Most of what we do is a loose collection of "things we know to generally work pretty well" but...

Ring Around The Regex: Lessons learned from fuzzing regex libraries

Addison Crump · 20mo

A two-part blog series posted on secret.club. Part 1 concerns the regex crate from Rust, investigating how limitations of original harnesses prevented the discovery of bugs...

Vector Automotive Cybersecurity Symposium: To Fuzz, or Not To Fuzz

Addison Crump · 21mo

Video is available on YouTube. Presentation slides are available on Google Slides. Abstract Fuzzing is beautiful: powerful, automated, simple, elegant, and effective. Touted as...

SoK: Prudent Evaluation Practices for Fuzzing

Addison Crump · 23mo

Publication is provided on the primary author's website. Source code and other artifacts available online.

SBFT'24/AIST'24: SoKotHban: A King-of-the-Hill-style Search Optimisation Competition

Addison Crump · 2y

This was a presentation offered at the Search-Based and Fuzz Testing Workshop and at the Artificial Intelligence in Software Testing in 2024. SBFT'24 slides provided here....

Trail of Bits "Lunch and Learn": Underutilised Fuzzing Strategies for Modern Software Testing

Addison Crump · 2y

Talk is available online on YouTube. Slides are available on Google Slides. Abstract Fuzzing is a well-researched and understood concept, but so little of its potential is...

37c3: Fuzz Everything, Everywhere, All at Once

Addison Crump · 2y

Recording. Presentation slides available via Google Slides. Fahrplan entry on CCC website. Blurb The maintainers of the AFLplusplus open-source project show crazy new ways to...

Responsible Disclosure

Addison Crump · 2y

Developers of software or designs under test in a security research context must be informed of all vulnerabilities discovered during that research within 90 days of discovery,...

Addison Crump

Latest Posts

February 2026

March 2026

April 2026

Stats