[pdf]Binary Code Extraction and Interface Identification for Security Applications

Binary code reutilization is the process of automatically identifying the interface and extracting the instructions and data dependencies of a code fragment from an executable program, so that it is selfcontained and can be reused by external code. Binary code reutilization is useful for a number of security applications, including reusing the proprietary cryptographic or unpacking functions from a malware sample and for rewriting a network dialog. In this paper we conduct the first systematic study of automated binary code reutilization and its security applications.

Origine de l’article :
http://www.eecs.berkeley.edu/Pubs/TechRpts/2009/EECS-2009-133.pdf