Embedded systems use low power microprocessors with little inherent security within critical infrastructure, resulting in the need for tool development to assess device vulnerabilities. Even though firmware is often written in programing languages such as C, existing vulnerability analysis frameworks lack the ability to perform complete assessments on embedded systems. Our proposed solution is designed specifically to use concolic analysis on embedded system environments. We have an advanced understanding of the cyber vulnerability assessment (VA) requirements and are proposing to create a hybrid concolic execution and fuzzer that will overcome the shortcomings of current VA tools and perform analysis on embedded devices. Even though firmware is often written in programing languages such as C, existing vulnerability analysis frameworks lack the ability to perform complete assessments on embedded systems. Our proposed solution is designed specifically to use concolic analysis on embedded system environments. We propose creating a hybrid concolic execution and fuzzer that will overcome the shortcomings of current VA tools and perform analysis on embedded devices within avionic systems and subsystems.
