Abstract
Information on the identity of functions is typically removed when translating source code to executable form. Yet being able to recognize specific functions opens up a number of applications. In this paper, we investigate normalization-based approaches for the purposes of aiding the reverse engineer and as an enabler for the rejuvenation of legacy binaries. We iteratively refine our methods and report on their effectiveness. Our results show that a naive approach can be surprisingly effective in both problem domains. Further, our evaluation looks into more advanced normalization techniques and finds that their practicality varies significantly with the problem domain.
| Original language | English |
|---|---|
| Title of host publication | 2018 IEEE 23rd Pacific Rim International Symposium on Dependable Computing (PRDC 2018) |
| Subtitle of host publication | Proceedings |
| Publisher | IEEE Computer Society |
| Pages | 241-251 |
| Number of pages | 11 |
| ISBN (Electronic) | 9781538657003 |
| DOIs | |
| Publication status | Published - 11 Feb 2019 |
| Event | 23rd IEEE Pacific Rim International Symposium on Dependable Computing, PRDC 2018 - Taipei, Taiwan, Province of China Duration: 4 Dec 2018 → 7 Dec 2018 |
Conference
| Conference | 23rd IEEE Pacific Rim International Symposium on Dependable Computing, PRDC 2018 |
|---|---|
| Country/Territory | Taiwan, Province of China |
| City | Taipei |
| Period | 4/12/18 → 7/12/18 |
Keywords
- Binary analysis
- Binary rejuvenation
- Program equivalence
- Reverse engineering