Publication Details

Approaching Retargetable Static, Dynamic, and Hybrid Executable-Code Analysis

KŘOUSTEK, J.; KOLÁŘ, D. Approaching Retargetable Static, Dynamic, and Hybrid Executable-Code Analysis. Acta Informatica Pragensia, 2013, vol. 2, no. 1, p. 18-29. ISSN: 1805-4951.
Czech title
Metody rekonfigurovatelné statické, dynamické a hybridní analýzy spustitelného kódu
Type
journal article
Language
English
Authors
Křoustek Jakub, Ing., Ph.D.
Kolář Dušan, doc. Dr. Ing. (DIFS)
URL
Keywords

debugger, decompiler, static and dynamic analysis, reverse engineering, Lissom

Abstract

Program comprehension and reverse engineering are two large domains of computer
science that have one common goal - analysis of existing programs and
understanding their behavior. In present, methods of source-code analysis are
well established and used in practice by software engineers. On the other hand,
analysis of executable code is a more challenging task that is not fully covered
by existing tools. Furthermore, methods of retargetable executable-code analysis
are rare because of their complexity. In this paper, we present a complex
platform-independent toolchain for executable-code analysis that supports both
static and dynamic analysis. This toolchain exploits several previously designed
methods and it can be used for debugging user's applications as well as malware
analysis, etc. We illustrate its usage on several real-world scenarios. The
toolchain is developed within the Lissom project.

Published
2013
Pages
18–29
Journal
Acta Informatica Pragensia, vol. 2, no. 1, ISSN 1805-4951
BibTeX 
@article{BUT103457,
  author="Jakub {Křoustek} and Dušan {Kolář}",
  title="Approaching Retargetable Static, Dynamic, and Hybrid Executable-Code Analysis",
  journal="Acta Informatica Pragensia",
  year="2013",
  volume="2",
  number="1",
  pages="18--29",
  issn="1805-4951",
  url="http://aip.vse.cz/index.php/aip/article/view/19"
}
Back to top