Discovering Vulnerabilities in COTS IoT Devices through Blackbox Fuzzing Web Management Interface

<table class="algorithm-group"><tr><td><table class="algorithm" id="psdc5"><tr><td> </td><td>GET/HTTP/1.1</td></tr><tr><td> </td><td>Host: 192.168.100.100</td></tr><tr><td> </td><td>Authorization: Basic YWRtaW46YWRtaW4 = AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA</td></tr><tr><td> </td><td>User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36</td></tr><tr><td> </td><td>Accept: text/html, application/xhtml + xml,application/xml; <i>q</i> = 0.9,image/webp, image/apng,</td></tr><tr><td> </td><td>∗/∗; <i>q</i> = 0.8</td></tr><tr><td> </td><td>Accept-Encoding: gzip, deflate</td></tr><tr><td> </td><td>Accept-Language: zh-CN,zh; <i>q</i> = 0.9</td></tr><tr><td> </td><td>Connection: close</td></tr></table></td></tr></table>

Security and Communication Networks

psdc5

Pseudocode 5

Pseudocode 5: Discovering Vulnerabilities in COTS IoT Devices through Blackbox Fuzzing Web Management Interface 