Abstract
Software is becoming increasingly more complex, and vul-nerabilities more subtle Better approaches are required to effectively analyze modern binaries, efficiently identify deeply buried defects, and intelligently assist human analysts with specific software reversing tasks Tons of good techniques and approaches regarding binary analysis have recently emerged from both academia and industry, many of which are fairly applicable to real-world binary research tasks However, due to the lack of a flexible and approachable binary analysis platform, testing and applying these techniques becomes a difficult job. angr is the next-generation binary analysis platform devel-oped by the SecLab of University of California, Santa Barbara It is flexible, easy to work with, cross-platform and cross-architecture, and has many techniques from academia already implemented and embedded inside In this course, we will start about the fundamental underpinnings of angr, dynamic symbolic execution, and static binary analysis We will then demonstrate best practices in doing symbolic execution and data dependence tracking in angr In the end, we will show how angr can assist in bug hunting All demos will be performed on CTF challenges and real-world programs.
| Original language | English (US) |
|---|---|
| Title of host publication | Proceedings - 2017 IEEE Cybersecurity Development Conference, SecDev 2017 |
| Publisher | Institute of Electrical and Electronics Engineers Inc. |
| Pages | 8-9 |
| Number of pages | 2 |
| ISBN (Electronic) | 9781538634677 |
| DOIs | |
| State | Published - Oct 20 2017 |
| Event | 2017 IEEE Cybersecurity Development Conference, SecDev 2017 - Cambridge, United States Duration: Sep 24 2017 → Sep 26 2017 |
Other
| Other | 2017 IEEE Cybersecurity Development Conference, SecDev 2017 |
|---|---|
| Country/Territory | United States |
| City | Cambridge |
| Period | 9/24/17 → 9/26/17 |
ASJC Scopus subject areas
- Computer Networks and Communications
- Safety, Risk, Reliability and Quality