{"id":"https://openalex.org/W7153070231","doi":"https://doi.org/10.48550/arxiv.2604.07624","title":"Program Analysis Guided LLM Agent for Proof-of-Concept Generation","display_name":"Program Analysis Guided LLM Agent for Proof-of-Concept Generation","publication_year":2026,"publication_date":"2026-04-08","ids":{"openalex":"https://openalex.org/W7153070231","doi":"https://doi.org/10.48550/arxiv.2604.07624"},"language":null,"primary_location":{"id":"doi:10.48550/arxiv.2604.07624","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2604.07624","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"type":"preprint","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://doi.org/10.48550/arxiv.2604.07624","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5067819966","display_name":"Achintya Desai","orcid":"https://orcid.org/0009-0003-0228-0069"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Desai, Achintya","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5133375452","display_name":"Md Shafiuzzaman","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Shafiuzzaman, Md","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5133329452","display_name":"Wenbo Guo","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Guo, Wenbo","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5039991493","display_name":"Tevfik Bultan","orcid":"https://orcid.org/0000-0003-2993-1215"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Bultan, Tevfik","raw_affiliation_strings":[],"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5067819966"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.4307999908924103,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.4307999908924103,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.11840000003576279,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.09610000252723694,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/fuzz-testing","display_name":"Fuzz testing","score":0.7957000136375427},{"id":"https://openalex.org/keywords/static-analysis","display_name":"Static analysis","score":0.6901000142097473},{"id":"https://openalex.org/keywords/program-analysis","display_name":"Program analysis","score":0.6869000196456909},{"id":"https://openalex.org/keywords/profiling","display_name":"Profiling (computer programming)","score":0.6177999973297119},{"id":"https://openalex.org/keywords/scalability","display_name":"Scalability","score":0.5929999947547913},{"id":"https://openalex.org/keywords/static-program-analysis","display_name":"Static program analysis","score":0.5740000009536743},{"id":"https://openalex.org/keywords/source-code","display_name":"Source code","score":0.5498999953269958},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5145999789237976},{"id":"https://openalex.org/keywords/automation","display_name":"Automation","score":0.4731000065803528}],"concepts":[{"id":"https://openalex.org/C111065885","wikidata":"https://www.wikidata.org/wiki/Q1189053","display_name":"Fuzz testing","level":3,"score":0.7957000136375427},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7275999784469604},{"id":"https://openalex.org/C97686452","wikidata":"https://www.wikidata.org/wiki/Q7604153","display_name":"Static analysis","level":2,"score":0.6901000142097473},{"id":"https://openalex.org/C98183937","wikidata":"https://www.wikidata.org/wiki/Q2112188","display_name":"Program analysis","level":2,"score":0.6869000196456909},{"id":"https://openalex.org/C187191949","wikidata":"https://www.wikidata.org/wiki/Q1138496","display_name":"Profiling (computer programming)","level":2,"score":0.6177999973297119},{"id":"https://openalex.org/C48044578","wikidata":"https://www.wikidata.org/wiki/Q727490","display_name":"Scalability","level":2,"score":0.5929999947547913},{"id":"https://openalex.org/C137287247","wikidata":"https://www.wikidata.org/wiki/Q1329550","display_name":"Static program analysis","level":4,"score":0.5740000009536743},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.5651999711990356},{"id":"https://openalex.org/C43126263","wikidata":"https://www.wikidata.org/wiki/Q128751","display_name":"Source code","level":2,"score":0.5498999953269958},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5145999789237976},{"id":"https://openalex.org/C115901376","wikidata":"https://www.wikidata.org/wiki/Q184199","display_name":"Automation","level":2,"score":0.4731000065803528},{"id":"https://openalex.org/C2777655017","wikidata":"https://www.wikidata.org/wiki/Q1501161","display_name":"Toolbox","level":2,"score":0.42579999566078186},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.39899998903274536},{"id":"https://openalex.org/C63116202","wikidata":"https://www.wikidata.org/wiki/Q7676227","display_name":"Taint checking","level":3,"score":0.387800008058548},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.3855000138282776},{"id":"https://openalex.org/C133162039","wikidata":"https://www.wikidata.org/wiki/Q1061077","display_name":"Code generation","level":3,"score":0.3822999894618988},{"id":"https://openalex.org/C2779639559","wikidata":"https://www.wikidata.org/wiki/Q7661178","display_name":"Symbolic execution","level":3,"score":0.3698999881744385},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.3529999852180481},{"id":"https://openalex.org/C53942775","wikidata":"https://www.wikidata.org/wiki/Q1211721","display_name":"Code coverage","level":3,"score":0.3070000112056732},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.2822999954223633},{"id":"https://openalex.org/C199519371","wikidata":"https://www.wikidata.org/wiki/Q942695","display_name":"Source lines of code","level":3,"score":0.263700008392334},{"id":"https://openalex.org/C91071405","wikidata":"https://www.wikidata.org/wiki/Q1413145","display_name":"Program slicing","level":3,"score":0.2621000111103058},{"id":"https://openalex.org/C529173508","wikidata":"https://www.wikidata.org/wiki/Q638608","display_name":"Software development","level":3,"score":0.2599000036716461},{"id":"https://openalex.org/C2988963302","wikidata":"https://www.wikidata.org/wiki/Q629206","display_name":"Program code","level":2,"score":0.2549000084400177}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.48550/arxiv.2604.07624","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2604.07624","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"doi:10.48550/arxiv.2604.07624","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2604.07624","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"Software":[0],"developers":[1],"frequently":[2],"receive":[3],"vulnerability":[4,12,50],"reports":[5],"that":[6,23,117,166],"require":[7,62],"them":[8],"to":[9,131],"reproduce":[10],"the":[11,27,48,82,88,123,167,173,181],"in":[13,78],"a":[14,19,31,35,40,45,53,104,159],"reliable":[15],"manner":[16],"by":[17,178],"generating":[18,44],"proof-of-concept":[20],"(PoC)":[21],"input":[22],"triggers":[24],"it.":[25],"Given":[26],"source":[28],"code":[29,37],"for":[30,39,47,72,142,153,180],"software":[32],"project":[33],"and":[34,59,65,68,86,120,137,147,150],"specific":[36],"location":[38],"potential":[41],"vulnerability,":[42],"automatically":[43],"PoC":[46,73,92,128,160,182],"given":[49],"has":[51],"been":[52],"challenging":[54],"research":[55],"problem.":[56],"Symbolic":[57],"execution":[58],"fuzzing":[60],"techniques":[61],"expert":[63],"guidance":[64,146,157],"manual":[66],"steps":[67],"face":[69],"scalability":[70],"challenges":[71],"generation.":[74],"Although":[75],"recent":[76],"advances":[77],"LLMs":[79,95],"have":[80],"increased":[81],"level":[83],"of":[84,91,112,126],"automation":[85],"scalability,":[87],"success":[89,124],"rate":[90,125],"generation":[93,114,129,161,183],"with":[94,158],"remains":[96],"quite":[97],"low.":[98],"In":[99],"this":[100],"paper,":[101],"we":[102],"present":[103],"novel":[105],"approach":[106,170,177],"called":[107],"Program":[108],"Analysis":[109],"Guided":[110],"proof":[111],"concept":[113],"agENT":[115],"(PAGENT)":[116],"is":[118],"scalable":[119],"significantly":[121,171],"improves":[122],"automated":[127],"compared":[130],"prior":[132,174],"results.":[133],"PAGENT":[134],"integrates":[135],"lightweight":[136],"rule-based":[138],"static":[139,144],"analysis":[140,145,156],"phases":[141],"providing":[143,154],"sanitizer-based":[148],"profiling":[149],"coverage":[151],"information":[152],"dynamic":[155],"agent.":[162],"Our":[163],"experiments":[164],"demonstrate":[165],"resulting":[168],"hybrid":[169],"outperforms":[172],"top-performing":[175],"agentic":[176],"132%":[179],"task.":[184]},"counts_by_year":[],"updated_date":"2026-04-11T06:19:08.300824","created_date":"2026-04-11T00:00:00"}