Presentation is loading. Please wait.

Presentation is loading. Please wait.

Reassembleable Disassembly Shuai Wang, Pei Wang, Dinghao Wu Presented by Chuong Ngo.

Published byMorgan Shields Modified over 9 years ago

Similar presentations

Presentation on theme: "Reassembleable Disassembly Shuai Wang, Pei Wang, Dinghao Wu Presented by Chuong Ngo."— Presentation transcript:

1 Reassembleable Disassembly Shuai Wang, Pei Wang, Dinghao Wu Presented by Chuong Ngo

2 What’s in Your Dependency?

3

4

5 Identifying Bugs, Flaws, and Exploits Study the specifications/papers detailing the techniques and algorithms. Penetration test the implementation. Study the implementation. Get lucky.

6 Identifying Bugs, Flaws, and Exploits Study the specifications/papers detailing the techniques and algorithms. Penetration test the implementation. Study the implementation. Get lucky.

7 Identifying Bugs, Flaws, and Exploits Study the specifications/papers detailing the techniques and algorithms. Penetration test the implementation. Study the implementation. Get lucky. But what if you don’t have the source code?

8 Back to the Source

9 Review of Compilation Process Stripped Binary

10 Disassemblers IDA Pro-best commercial EXE to assembly to C. Not reassembleable. MC-Semantics Object to binary only Reassembleable Lower performance

11 Binary Rewriting Tools Specific compiler or non-stripped binary. Re-compiled binary bloat. Large execution overhead. Not reassembleable.

12 Code Relocatability is Key to Reassembility

13 Problem of Relocatability - Data or Reference?

14 Disassembler needs to symbolize references

15 Types of Symbol References

16 Methodology Simple filter for c2X. 4/8 byte aligned. d2d irrelevant. Find jump tables.

17 Enter Oroboros

18 Architecture of Uroboros

19

20

21 Oroboros Evaluation

22 Evaluation Corpora

23 224 total A1: Coreutils (103) A2: Real (7) A3: SPEC2006 C

24 32-bit Binary Accuracies

25 64-bit Binary Accuracies

26 32-bit Binary Execution Overhead

27 32-bit Binary Processing Times

28 Summary Reassembeable disassembly needed Symbolization solves code relocatability Uroboros comprised of Disassembly and Analysis module Compiler independent No C++ support

29 Questions Why did the authors choose to report false positives and false negatives? Was reporting on the first and last 10 programs, arranged alphabetically, a good idea? What could explain the outliers in the reported processing times and execution overhead?

Download ppt "Reassembleable Disassembly Shuai Wang, Pei Wang, Dinghao Wu Presented by Chuong Ngo."

Similar presentations

ECOE 560 Design Methodologies and Tools for Software/Hardware Systems Spring 2004 Serdar Taşıran.

ECOE 560 Design Methodologies and Tools for Software/Hardware Systems Spring 2004 Serdar Taşıran.
Lecture 8 Dynamic Branch Prediction, Superscalar and VLIW Advanced Computer Architecture COE 501.

Lecture 8 Dynamic Branch Prediction, Superscalar and VLIW Advanced Computer Architecture COE 501.
系 統 程 式 System Programming

系 統 程 式 System Programming
1 Compiler Construction Intermediate Code Generation.

1 Compiler Construction Intermediate Code Generation.
LECTURE 1 CMSC 201. Overview Goal: Problem solving and algorithm development. Learn to program in Python. Algorithm - a set of unambiguous and ordered.

LECTURE 1 CMSC 201. Overview Goal: Problem solving and algorithm development. Learn to program in Python. Algorithm - a set of unambiguous and ordered.
1 Outline  Introduction to JEPG2000  Why another image compression technique  Features  Discrete Wavelet Transform  Wavelet transform  Wavelet implementation.

1 Outline  Introduction to JEPG2000  Why another image compression technique  Features  Discrete Wavelet Transform  Wavelet transform  Wavelet implementation.
COMP3221: Microprocessors and Embedded Systems Lecture 2: Instruction Set Architecture (ISA) Lecturer: Hui Wu Session.

COMP3221: Microprocessors and Embedded Systems Lecture 2: Instruction Set Architecture (ISA) Lecturer: Hui Wu Session.
The Analytical Engine Module 6 Program Translation.

The Analytical Engine Module 6 Program Translation.
T-diagrams “Mommy, where do compilers come from?” Adapted from:

T-diagrams “Mommy, where do compilers come from?” Adapted from:
Instruction Representation II (1) Fall 2007 Lecture 10: Instruction Representation II.

Instruction Representation II (1) Fall 2007 Lecture 10: Instruction Representation II.
LIFT: A Low-Overhead Practical Information Flow Tracking System for Detecting Security Attacks Feng Qin, Cheng Wang, Zhenmin Li, Ho-seop Kim, Yuanyuan.

LIFT: A Low-Overhead Practical Information Flow Tracking System for Detecting Security Attacks Feng Qin, Cheng Wang, Zhenmin Li, Ho-seop Kim, Yuanyuan.
Chapter 16 Programming and Languages: Telling the Computer What to Do.

Chapter 16 Programming and Languages: Telling the Computer What to Do.
Instruction Representation II (1) Fall 2005 Lecture 10: Instruction Representation II.

Instruction Representation II (1) Fall 2005 Lecture 10: Instruction Representation II.
Partial Automation of an Integration Reverse Engineering Environment of Binary Code Author : Cristina Cifuentes Reverse Engineering, 1996., Proceedings.

Partial Automation of an Integration Reverse Engineering Environment of Binary Code Author : Cristina Cifuentes Reverse Engineering, 1996., Proceedings.
Efficient Instruction Set Randomization Using Software Dynamic Translation Michael Crane Wei Hu.

Efficient Instruction Set Randomization Using Software Dynamic Translation Michael Crane Wei Hu.
1.3 Executing Programs. How is Computer Code Transformed into an Executable? Interpreters Compilers Hybrid systems.

1.3 Executing Programs. How is Computer Code Transformed into an Executable? Interpreters Compilers Hybrid systems.
Chapter 1: Introduction To Computer | SCP1103 Programming Technique C | Jumail, FSKSM, UTM, 2005 | Last Updated: July 2005 Slide 1 Introduction To Computers.

Chapter 1: Introduction To Computer | SCP1103 Programming Technique C | Jumail, FSKSM, UTM, 2005 | Last Updated: July 2005 Slide 1 Introduction To Computers.
CHARACTERS Data Representation. Using binary to represent characters Computers can only process binary numbers (1’s and 0’s) so a system was developed.

CHARACTERS Data Representation. Using binary to represent characters Computers can only process binary numbers (1’s and 0’s) so a system was developed.
IEEE Fast Square Root Ref: Graphics Gems III; 22 Spring 2003.

IEEE Fast Square Root Ref: Graphics Gems III; 22 Spring 2003.
Over the last years, the amount of malicious code (Viruses, worms, Trojans, etc.) sent through the internet is highly increasing. Due to this significant.

Over the last years, the amount of malicious code (Viruses, worms, Trojans, etc.) sent through the internet is highly increasing. Due to this significant.

Similar presentations

Ads by Google