Published January 25, 2025 | Version v5
Software Open

FIXX: FInding eXploits from eXamples

Creators

  • 1. ROR icon University of Illinois Chicago
  • 2. ROR icon Oracle (United States)

Description

FInding eXploits from eXamples (FIXX) is a novel approach focused on detecting taint-style vulnerabilities in PHP applications. Using important information from a CVE containing details regarding a vulnerability in an application, our method aims to discover possible similar vulnerabilities in the corresponding application. This artifact contains details on how FIXX can be used to analyze web applications and detect paths to a previously known vulnerability. It contains all the software and hardware requirements needed to setup the environment as well as details on how FIXX can be installed. Finally, the major claims of the paper have been discussed with an example in a README file.

Files

FIXX_USENIX_2025.zip

Files (591.4 MB)

Name Size Download all
md5:b1164e313e19ce4f71b80b34b7066ad4
591.4 MB Preview Download

Additional details

Funding

Defense Advanced Research Projects Agency
Computers and Humans Exploring Software Security (CHESS) FA8750-19-C-0006
United States Department of Defense
Educational and Research Training Collaborative HQ00342010037