公开(公告)号：US20250045418A1

公开(公告)日：2025-02-06

申请号：US18790022

申请日：2024-07-31

Applicant: Booz Allen Hamilton Inc.

Inventor： Leander A. Metcalf II ,  Allen Stewart

IPC: G06F21/57

Abstract: Embodiments can relate to a system for automated exploit generation that receives input data representative of a target action to establish a target having a potential target vulnerability. The system can build a simulated target environment that includes the established target. The system can conduct an analysis method including a static, a concrete, a dynamic, and/or a symbolic analysis. The system can create a chainable sequence including an information disclosure, a read, a write, and/or an execution exploit primitive. The system can generate an exploit chain that, when executed by the processor in response to the target action, can transform the target action to a target failure within the simulated target environment and thereby expose the target vulnerability. The system can execute the exploit chain within the simulated target environment to examine coverage of the exposed target vulnerability. The system can generate an output representative of the exposed target vulnerability.