{"id":"https://openalex.org/W4415624872","doi":"https://doi.org/10.1109/rtsi64020.2025.11212261","title":"HyFuzz: A Hybrid AI-Enhanced Vulnerability Detection Framework","display_name":"HyFuzz: A Hybrid AI-Enhanced Vulnerability Detection Framework","publication_year":2025,"publication_date":"2025-08-24","ids":{"openalex":"https://openalex.org/W4415624872","doi":"https://doi.org/10.1109/rtsi64020.2025.11212261"},"language":null,"primary_location":{"id":"doi:10.1109/rtsi64020.2025.11212261","is_oa":false,"landing_page_url":"https://doi.org/10.1109/rtsi64020.2025.11212261","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 IEEE 9th Forum on Research and Technologies for Society and Industry (RTSI)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5120163027","display_name":"Yanlei Fu","orcid":null},"institutions":[{"id":"https://openalex.org/I181369854","display_name":"Friedrich-Alexander-Universit\u00e4t Erlangen-N\u00fcrnberg","ror":"https://ror.org/00f7hpc57","country_code":"DE","type":"education","lineage":["https://openalex.org/I181369854"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Yanlei Fu","raw_affiliation_strings":["Friedrich–Alexander University Erlangen–Nürnberg (FAU),Computer Networks and Communication Systems,Department of Computer Science,Erlangen,Germany"],"affiliations":[{"raw_affiliation_string":"Friedrich–Alexander University Erlangen–Nürnberg (FAU),Computer Networks and Communication Systems,Department of Computer Science,Erlangen,Germany","institution_ids":["https://openalex.org/I181369854"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5102836787","display_name":"Reinhard German","orcid":"https://orcid.org/0000-0002-9071-4802"},"institutions":[{"id":"https://openalex.org/I181369854","display_name":"Friedrich-Alexander-Universit\u00e4t Erlangen-N\u00fcrnberg","ror":"https://ror.org/00f7hpc57","country_code":"DE","type":"education","lineage":["https://openalex.org/I181369854"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Reinhard German","raw_affiliation_strings":["Friedrich–Alexander University Erlangen–Nürnberg (FAU),Computer Networks and Communication Systems (Informatik 7),Department of Computer Science,Erlangen,Germany"],"affiliations":[{"raw_affiliation_string":"Friedrich–Alexander University Erlangen–Nürnberg (FAU),Computer Networks and Communication Systems (Informatik 7),Department of Computer Science,Erlangen,Germany","institution_ids":["https://openalex.org/I181369854"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5007979531","display_name":"Loui Al Sardy","orcid":"https://orcid.org/0000-0002-8461-5154"},"institutions":[{"id":"https://openalex.org/I181369854","display_name":"Friedrich-Alexander-Universit\u00e4t Erlangen-N\u00fcrnberg","ror":"https://ror.org/00f7hpc57","country_code":"DE","type":"education","lineage":["https://openalex.org/I181369854"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Loui Al Sardy","raw_affiliation_strings":["Friedrich–Alexander University Erlangen–Nürnberg (FAU),Computer Networks and Communication Systems (Informatik 7),Department of Computer Science,Erlangen,Germany"],"affiliations":[{"raw_affiliation_string":"Friedrich–Alexander University Erlangen–Nürnberg (FAU),Computer Networks and Communication Systems (Informatik 7),Department of Computer Science,Erlangen,Germany","institution_ids":["https://openalex.org/I181369854"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5120163027"],"corresponding_institution_ids":["https://openalex.org/I181369854"],"apc_list":null,"apc_paid":null,"fwci":3.6264,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.94821679,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"350","last_page":"355"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.5375999808311462,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.5375999808311462,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.07349999994039536,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.06260000169277191,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/fuzz-testing","display_name":"Fuzz testing","score":0.9431999921798706},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.7674000263214111},{"id":"https://openalex.org/keywords/scalability","display_name":"Scalability","score":0.5605999827384949},{"id":"https://openalex.org/keywords/pipeline","display_name":"Pipeline (software)","score":0.5034999847412109},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.46950000524520874},{"id":"https://openalex.org/keywords/shuffling","display_name":"Shuffling","score":0.4050000011920929},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.3986999988555908},{"id":"https://openalex.org/keywords/matching","display_name":"Matching (statistics)","score":0.38769999146461487},{"id":"https://openalex.org/keywords/event","display_name":"Event (particle physics)","score":0.37070000171661377}],"concepts":[{"id":"https://openalex.org/C111065885","wikidata":"https://www.wikidata.org/wiki/Q1189053","display_name":"Fuzz testing","level":3,"score":0.9431999921798706},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.809499979019165},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.7674000263214111},{"id":"https://openalex.org/C48044578","wikidata":"https://www.wikidata.org/wiki/Q727490","display_name":"Scalability","level":2,"score":0.5605999827384949},{"id":"https://openalex.org/C43521106","wikidata":"https://www.wikidata.org/wiki/Q2165493","display_name":"Pipeline (software)","level":2,"score":0.5034999847412109},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.46950000524520874},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4514000117778778},{"id":"https://openalex.org/C167927819","wikidata":"https://www.wikidata.org/wiki/Q1930567","display_name":"Shuffling","level":2,"score":0.4050000011920929},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.3986999988555908},{"id":"https://openalex.org/C165064840","wikidata":"https://www.wikidata.org/wiki/Q1321061","display_name":"Matching (statistics)","level":2,"score":0.38769999146461487},{"id":"https://openalex.org/C2779662365","wikidata":"https://www.wikidata.org/wiki/Q5416694","display_name":"Event (particle physics)","level":2,"score":0.37070000171661377},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.365200012922287},{"id":"https://openalex.org/C12725497","wikidata":"https://www.wikidata.org/wiki/Q810247","display_name":"Baseline (sea)","level":2,"score":0.3578999936580658},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3546999990940094},{"id":"https://openalex.org/C79403827","wikidata":"https://www.wikidata.org/wiki/Q3988","display_name":"Real-time computing","level":1,"score":0.35040000081062317},{"id":"https://openalex.org/C183469790","wikidata":"https://www.wikidata.org/wiki/Q333501","display_name":"Crash","level":2,"score":0.35019999742507935},{"id":"https://openalex.org/C38822068","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Denial-of-service attack","level":3,"score":0.34470000863075256},{"id":"https://openalex.org/C2780385302","wikidata":"https://www.wikidata.org/wiki/Q367158","display_name":"Protocol (science)","level":3,"score":0.33559998869895935},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.3328000009059906},{"id":"https://openalex.org/C2780451532","wikidata":"https://www.wikidata.org/wiki/Q759676","display_name":"Task (project management)","level":2,"score":0.33070001006126404},{"id":"https://openalex.org/C128942645","wikidata":"https://www.wikidata.org/wiki/Q1568346","display_name":"Test case","level":3,"score":0.3142000138759613},{"id":"https://openalex.org/C2780378061","wikidata":"https://www.wikidata.org/wiki/Q25351891","display_name":"Service (business)","level":2,"score":0.2996000051498413},{"id":"https://openalex.org/C2776401178","wikidata":"https://www.wikidata.org/wiki/Q12050496","display_name":"Feature (linguistics)","level":2,"score":0.296099990606308},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.28630000352859497},{"id":"https://openalex.org/C2777615720","wikidata":"https://www.wikidata.org/wiki/Q11888847","display_name":"Prioritization","level":2,"score":0.2824000120162964},{"id":"https://openalex.org/C2776836416","wikidata":"https://www.wikidata.org/wiki/Q1364844","display_name":"False alarm","level":2,"score":0.274399995803833},{"id":"https://openalex.org/C40842320","wikidata":"https://www.wikidata.org/wiki/Q19423","display_name":"Buffer overflow","level":2,"score":0.2728999853134155},{"id":"https://openalex.org/C50897621","wikidata":"https://www.wikidata.org/wiki/Q2665508","display_name":"Hybrid system","level":2,"score":0.27160000801086426},{"id":"https://openalex.org/C126042441","wikidata":"https://www.wikidata.org/wiki/Q1324888","display_name":"Frame (networking)","level":2,"score":0.2662000060081482},{"id":"https://openalex.org/C105339364","wikidata":"https://www.wikidata.org/wiki/Q2297740","display_name":"Software deployment","level":2,"score":0.26249998807907104},{"id":"https://openalex.org/C25343380","wikidata":"https://www.wikidata.org/wiki/Q277521","display_name":"Relation (database)","level":2,"score":0.26179999113082886},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.2572000026702881}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/rtsi64020.2025.11212261","is_oa":false,"landing_page_url":"https://doi.org/10.1109/rtsi64020.2025.11212261","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 IEEE 9th Forum on Research and Technologies for Society and Industry (RTSI)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":12,"referenced_works":["https://openalex.org/W2535617737","https://openalex.org/W2766540688","https://openalex.org/W2883395840","https://openalex.org/W2963674831","https://openalex.org/W2964097210","https://openalex.org/W2974819274","https://openalex.org/W3082737479","https://openalex.org/W3101845936","https://openalex.org/W4378591002","https://openalex.org/W4391724785","https://openalex.org/W4391791499","https://openalex.org/W4415624872"],"related_works":[],"abstract_inverted_index":{"Vulnerability":[0],"scanning":[1,62],"remains":[2],"a":[3,17,59,91,133,140,168,209],"crucial":[4],"step":[5],"of":[6,34,51,143],"cyber":[7],"defence,":[8],"but":[9,37],"at":[10,48],"the":[11,23,49,96,104,118,144,185],"same":[12],"time,":[13],"current":[14],"tools":[15],"face":[16],"trade-off":[18],"between":[19],"detection":[20,165,216],"speed":[21],"and":[22,53,69,83,95,153,167,189,211],"ability":[24],"to":[25,39,162,191,214],"uncover":[26],"unknown":[27],"threats.":[28],"Signature-based":[29],"methods":[30],"provide":[31],"fast":[32],"verification":[33],"known":[35],"exploits":[36],"fail":[38],"detect":[40],"zero-day":[41],"vulnerabilities,":[42],"while":[43],"fuzzing":[44,123],"enables":[45],"deeper":[46],"exploration":[47],"cost":[50],"time":[52],"resources.":[54],"This":[55],"paper":[56],"introduces":[57],"HyFuzz,":[58],"two-stage":[60],"hybrid":[61,158],"framework":[63,186],"that":[64,156],"combines":[65],"deterministic":[66],"Common":[67],"Vulnerabilities":[68],"Exposures":[70],"(CVE)":[71],"correlation":[72],"with":[73],"adaptive,":[74],"AI-driven":[75],"fuzzing.":[76],"The":[77,203],"first":[78],"stage":[79,120],"performs":[80],"rapid":[81],"fingerprinting":[82],"version":[84],"matching":[85],"using":[86,124],"service":[87],"banners,":[88],"cross-referenced":[89],"against":[90],"local":[92],"CVE":[93,114],"database":[94],"Metasploit":[97],"framework.":[98],"If":[99],"an":[100],"exploit":[101],"is":[102,116,187],"confirmed,":[103],"scan":[105],"terminates":[106],"within":[107],"approximately":[108],"3":[109],"minutes":[110],"per":[111],"host.If":[112],"no":[113],"match":[115],"found,":[117],"second":[119],"triggers":[121],"coverage-guided":[122],"BooFuzz":[125],"or":[126,139,198],"Hypothesis,":[127],"followed":[128],"by":[129],"corpus":[130],"expansion":[131],"via":[132],"lightweight":[134],"Generative":[135],"Adversarial":[136],"Network":[137],"(GAN)":[138],"zero-shot":[141],"prompt":[142],"8-billion-parameter":[145],"DeepSeek-r1":[146],"language":[147],"model.":[148],"Experiments":[149],"on":[150,180],"Apache,":[151],"Nginx,":[152],"IIS":[154],"demonstrate":[155],"this":[157],"strategy":[159],"achieves":[160],"up":[161],"10\u00d7":[163],"faster":[164],"times":[166],"35%":[169],"improvement":[170],"in":[171],"crash":[172],"discovery":[173],"over":[174],"baseline":[175],"fuzzers.Although":[176],"evaluation":[177],"was":[178],"conducted":[179],"HTTP":[181],"(Hypertext":[182],"Transfer":[183],"Protocol),":[184],"protocol-agnostic":[188],"applicable":[190],"Message":[192],"Queuing":[193],"Telemetry":[194],"Transport":[195],"(MQTT),":[196],"Modbus,":[197],"Constrained":[199],"Application":[200],"Protocol":[201],"(CoAP).":[202],"proposed":[204],"\"CVE-first,":[205],"fuzzing-second\"":[206],"pipeline":[207],"offers":[208],"scalable":[210],"efficient":[212],"approach":[213],"vulnerability":[215],"across":[217],"diverse":[218],"networked":[219],"environments.":[220]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-03-07T16:01:11.037858","created_date":"2025-10-28T00:00:00"}