Symbolic Analysis

Invariant Inference:

• DySy: Dynamic Symbolic Execution for Invariant Inference. Christoph Csallner, Nikolai Tillmann, and Yannis Smaragdakis. ICSE 2008.

Problem Identification:

• Precise Identification of Problems for Structural Test Generation. Xusheng Xiao, Tao Xie, Nikolai Tillmann, Jonathan Halleux. ICSE 2011.

Interface Identification:

• Precise Interface Identification to Improve Testing and Analysis of Web Applications. William G.J. Halfond, Saswat Anand, and Alessandro Orso. ISSTA 2009.

Debugging:

• Cause Clue Clauses: Error Localization using Maximum Satisfiability. Manu Jose and Rupak Majumdar. PLDI 2011.
• Darwin: An Approach for Debugging Evolving Programs. Dawei Qu, Abhik Roychoudhury, Zengkai Lang, and Kapil Vaswani. FSE 2009.
• Golden Implementation Driven Software Debugging. Ansuman Banerjee, Abhik Roychoudhury, Johannes A. Harlie, Zhenkai Liang. FSE 2010.
• Debugging as a Science, that too, when your Program is Changing. Abhik Roychoudhury. Electronic Notes in Theoretical Computer Science (ENTCS) in 2010.

Error Detection:

• Symbolic Execution with Abstract Subsumption Checking. Saswat Anand, Corina Pasareanu, Willem Visser. International SPIN Workshop on Model Checking of Software (SPIN), 2006. (extended version in STTT journal)

Malware Analysis & Vulnerability Detection:

• All You Ever Wanted to Know About Dynamic Taint Analysis and Forward Symbolic Execution (but might have been afraid to ask). Edward J. Schwartz, Thanassis Avgerinos, David Brumley. Oakland 2010.
• Ewap: Using Symbolic Execution to Exploit Windows Applications. Jianmin Chen Hui Shu Xiaobing Xiong ZhengZhou. CSIE.2009.
• Input Generation via Decomposition and Re-Stitching: Finding Bugs in Malware. Juan Caballero, Pongsin Poosankam, Stephen McCamant, Domagoj Babic, Dawn Song. CCS 2010.
• Symbolic Security Analysis of Ruby-on-Rails Web Applications. Avik Chaudhuri. Jeffrey S. Foster. CCS 2010.
• Loop-Extended Symbolic Execution on Binary Programs. Prateek Saxena, Pongsin Poosankam, Stephen McCamant, and Dawn Song. ISSTA 2009.

Web Application:

• Precise Interface Identification to Improve Testing and Analysis of Web Applications. William G.J. Halfond, Saswat Anand, and Alessandro Orso. ISSTA 2009.
• Symbolic Security Analysis of Ruby-on-Rails Web Applications. Avik Chaudhuri. Jeffrey S. Foster. CCS 2010.

Understanding Configurable Systems

• Using Symbolic Evaluation to Understand Behavior in Configurable Software Systems Elnatan Reisner, Charles Song, Kin-Keung Ma, Jeffrey S. Foster, and Adam Porter. ICSE 2010