RESource: a framework for online matching of assembly with open source code

Authors:
Ashkan Rahimian;Philippe Charland;Stere Preda;Mourad Debbabi
Affiliations:
Computer Security Laboratory, CIISE Concordia University, Montreal, Quebec, Canada;Mission Critical Cyber Security Section, Defence R&D Canada - Valcartier, Quebec, Canada;Computer Security Laboratory, CIISE Concordia University, Montreal, Quebec, Canada;Computer Security Laboratory, CIISE Concordia University, Montreal, Quebec, Canada
Venue:
FPS'12 Proceedings of the 5th international conference on Foundations and Practice of Security
Year:
2012

Citing 4
Cited 0

The B-book: assigning programs to meanings

The B-book: assigning programs to meanings
Computer Systems: A Programmer's Perspective

Computer Systems: A Programmer's Perspective
Reconstruction of Composite Types for Decompilation

SCAM '10 Proceedings of the 2010 10th IEEE Working Conference on Source Code Analysis and Manipulation
Practical Malware Analysis: The Hands-On Guide to Dissecting Malicious Software

Practical Malware Analysis: The Hands-On Guide to Dissecting Malicious Software

Quantified Score

Hi-index	0.00

Visualization

Abstract

Software reverse engineering is a fastidious task demanding a strong expertise in assembly coding. Various existing tools may help analyze the functionality of a binary file without executing it and an interesting step would naturally be the search for the original source files. Our tool called RESource considers the extraction of some features in the assembly code so that queries can be triggered to a source repository in a reliable way: either (1) the result is a set of references to the original project files provided they are hosted on the repository or (2) at least some functionalities of the binary file are unleashed. Such an approach is very promising given its proved performances in real assembly code applications.