CodeSurfer/x86-A Platform for Analyzing x86 Executables

14 years 6 months ago

Download www.cs.wisc.edu

CodeSurfer/x86 is a prototype system for analyzing x86 executables. It uses a static-analysis algorithm called value-set analysis (VSA) to recover intermediate representations that are similar to those that a compiler creates for a program written in a high-level language. A major challenge in building an analysis tool for executables is in providing useful information about operations involving memory. This is diﬃcult when symbol-table and debugging information is absent or untrusted. CodeSurfer/x86 overcomes these challenges to provide an analyst with a powerful and ﬂexible platform for investigating the properties and behaviors of potentially malicious code (such as COTS components, plugins, mobile code, worms, Trojans, and virus-infected code) using (i) CodeSurfer/x86’s GUI, (ii) CodeSurfer/x86’s scripting language, which provides access to all of the intermediate representations that CodeSurfer/x86 builds for the executable, and (iii) GrammaTech’s Path Inspector, which i...

Gogul Balakrishnan, Radu Gruian, Thomas W. Reps, T

Real-time Traffic

CC 2005 | CodeSurfer/x86’s Scripting Language | Intermediate Representations | Operations Involving Memory | Programming Languages |

claim paper

Post Info
More Details (n/a)

Added	26 Jun 2010
Updated	26 Jun 2010
Type	Conference
Year	2005
Where	CC
Authors	Gogul Balakrishnan, Radu Gruian, Thomas W. Reps, Tim Teitelbaum

Comments (0)

Sciweavers

CodeSurfer/x86-A Platform for Analyzing x86 Executables

CC 2005 | CodeSurfer/x86’s Scripting Language | Intermediate Representations | Operations Involving Memory | Programming Languages |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers