mi1itray.axe

Rust污点分析调研

mi1itray.axe published on March 02, 2024

1 min, 76 words

Rust语言污点分析相关的几篇内容

SafeDrop: Detecting Memory Deallocation Bugs of Rust Programs via Static Data-flow Analysis.
Encapsulated Functions: Fortifying Rust's FFI in Embedded Systems.
Demystifying Compiler Unstable Feature Usage and Impacts in the Rust Ecosystem
Detecting Cross-language Memory Management Issues in Rust
MirChecker: Detecting Bugs in Rust Programs via Static Analysis
Static Deadlock Detection for Rust Programs

Categories: Paper Reverse

Tags: obfuscation obfuscation taint analysis

BiAn: Smart Contract Source Code Obfuscation

mi1itray.axe published on October 12, 2023

5 min, 975 words

智能合约代码混淆，感觉还是ollvm的影子，还是那三种模式，只是做了相关的适配以及加了很多其他细节，总体思路是没有变的。

创新点在于使用改进后的混沌映射来做不透明谓词，增加了一定的混淆程度

会议：IEEE Transactions on Software Engineering

等级：CCF-A

Categories: Reverse Paper

Tags: Obfuscation Smart Contract

Binary Diffing

mi1itray.axe published on August 19, 2023

57 min, 11385 words

最近想看看binary diffing的内容，直接从头看看一篇篇翻，涉及到很多机器学习内容，很多不懂的，慢慢来看吧。这里先看了10几篇，很多都只看了一个摘要。主要是了解一下思路，看看这个领域的内容的研究历史，Binary Diffing 1暂时只看到2016年的paper，后续继续更新，主要文章引用如下

Bitshred: feature hashing malware for scalable triage and semantic analysis.
Binary function clustering using semantic hashes.
Binslayer: accurate comparison of binary executables.
Control flow-based malware variant detection.
{MutantX-S}: Scalable Malware Clustering Based on Static Features.
Semantics-based obfuscation-resilient binary code similarity comparison with applications to software plagiarism detection.
Leveraging semantic signatures for bug search in binary programs.
Cross-architecture bug search in binary executables.
Bingo: Crossarchitecture cross-os binary search.
Statistical similarity of binaries.
discovRE: Efficient Cross-Architecture Identification of Bugs in Binary Code.
Scalable Graph-based Bug Search for Firmware Images.
Crossarchitecture binary semantics understanding via similar code comparison.