Compiler help for binary manipulation tools

Authors:
Tugrul Ince;Jeffrey K. Hollingsworth
Affiliations:
Computer Science Department, University of Maryland, College Park, MD;Computer Science Department, University of Maryland, College Park, MD
Venue:
Euro-Par'12 Proceedings of the 18th international conference on Parallel processing workshops
Year:
2012

Citing 16
Cited 0

ATOM: a system for building customized program analysis tools

PLDI '94 Proceedings of the ACM SIGPLAN 1994 conference on Programming language design and implementation
EEL: machine-independent executable editing

PLDI '95 Proceedings of the ACM SIGPLAN 1995 conference on Programming language design and implementation
Decompilation of binary programs

Software—Practice & Experience
The Paradyn Parallel Performance Measurement Tool

Computer
Extracting safe and precise control flow from binaries

RTCSA '00 Proceedings of the Seventh International Conference on Real-Time Systems and Applications
Disassembly of Executable Code Revisited

WCRE '02 Proceedings of the Ninth Working Conference on Reverse Engineering (WCRE'02)
Using a Decompiler for Real-World Source Recovery

WCRE '04 Proceedings of the 11th Working Conference on Reverse Engineering
Pin: building customized program analysis tools with dynamic instrumentation

Proceedings of the 2005 ACM SIGPLAN conference on Programming language design and implementation
An API for Runtime Code Patching

International Journal of High Performance Computing Applications
Practical analysis of stripped binary code

ACM SIGARCH Computer Architecture News - Special issue on the 2005 workshop on binary instrumentation and application
Guest editor's introduction

ACM SIGARCH Computer Architecture News
Static disassembly of obfuscated binaries

SSYM'04 Proceedings of the 13th conference on USENIX Security Symposium - Volume 13
Dynamic Binary Instrumentation-Based Framework for Malware Defense

DIMVA '08 Proceedings of the 5th international conference on Detection of Intrusions and Malware, and Vulnerability Assessment
Learning to analyze binary computer code

AAAI'08 Proceedings of the 23rd national conference on Artificial intelligence - Volume 2
Profile-driven selective program loading

EuroPar'10 Proceedings of the 16th international Euro-Par conference on Parallel processing: Part I
Detecting self-mutating malware using control-flow graph matching

DIMVA'06 Proceedings of the Third international conference on Detection of Intrusions and Malware & Vulnerability Assessment

Quantified Score

Hi-index	0.00

Visualization

Abstract

Parsing machine code is the first step for most analyses performed on binary files. These analyses build control flow graphs (CFGs). In this work we propose a compilation mechanism that augments binary files with information about where each basic block is located and how they are connected to each other. This information makes it unnecessary to analyze most instructions in a binary during the initial CFG build process. As a result, these binary analysis tools experience dramatically increased parsing speeds - 3.8x on average.