Detail publikace

Accurate Retargetable Decompilation Using Debug Information

KŘOUSTEK, J. MATULA, P. KONČICKÝ, J. KOLÁŘ, D.

Originální název

Accurate Retargetable Decompilation Using Debug Information

Typ

článek ve sborníku mimo WoS a Scopus

Jazyk

angličtina

Originální abstrakt

In this paper, we present an extension of an existing automatically generated retargetable decompiler that is capable to parse, process, and utilize compiler-generated debugging information. This tool can be used for dealing with several security-related issues (e.g., forensics, malware analysis, vulnerability detection). Additional debugging information is used for an accurate reconstruction of platform-dependent binary applications into a well-readable high-level-language representation. The proposed solution is platform and debugging-format independent. In present, two major debugging formats - DWARF and Microsoft PDB - are supported; the extracted information is used for a  recovery of several high-level constructions (e.g., variables, functions and their arguments). The proposed concept was validated by experimental results.

Klíčová slova

decompilation, debugging information, PDB, DWARF, Lissom

Autoři

KŘOUSTEK, J.; MATULA, P.; KONČICKÝ, J.; KOLÁŘ, D.

Rok RIV

2012

Vydáno

19. 8. 2012

Nakladatel

International Academy, Research, and Industry Association

Místo

Rome

ISBN

978-1-61208-209-7

Kniha

Proceedings of the Sixth International Conference on Emerging Security Information, Systems and Technologies (SECURWARE'12)

Strany od

79

Strany do

84

Strany počet

6

BibTex

@inproceedings{BUT96959,
  author="Jakub {Křoustek} and Peter {Matula} and Jaromír {Končický} and Dušan {Kolář}",
  title="Accurate Retargetable Decompilation Using Debug Information",
  booktitle="Proceedings of the Sixth International Conference on Emerging Security Information, Systems and Technologies (SECURWARE'12)",
  year="2012",
  pages="79--84",
  publisher="International Academy, Research, and Industry Association",
  address="Rome",
  isbn="978-1-61208-209-7"
}