Proj. CAR Paper Reading: Debin: Predicting Debug Information in Stripped Binaries

Abstract

本文:Debin
任务: recovering symbol names, types and locations
方法:use scalable structured prediction algorithms in probabilistic graphical models with an extensive set of features to distinguish the name and the type of key elements extracted such as register-allocated and memory-allocated variables

效果:

  1. 能够处理x86, x64, ARM三种平台的二进制,非常全面

实验:
效果:

  1. x64, precision: 68.8%, recall: 68.3%
  2. 在DNS resolver reader这种真实软件中发现了可疑行为
posted @ 2023-06-22 15:29  雪溯  阅读(13)  评论(0编辑  收藏  举报