| 基于控制流精化的反汇编方法 |
| |
| 引用本文: | 马金鑫,忽朝俭,李舟军. 基于控制流精化的反汇编方法[J]. 清华大学学报(自然科学版), 2011, 0(10): 1345-1350 |
| |
| 作者姓名: | 马金鑫 忽朝俭 李舟军 |
| |
| 作者单位: | 北京航空航天大学计算机学院; |
| |
| 基金项目: | 国家自然科学基金资助项目(60973105,90718017) |
| |
| 摘 要: | 反汇编过程是整个逆向工程的基础和重要部分。为提高反汇编过程的效率及反汇编结果的准确度,通过对传统反汇编方法的探究,提出了一种基于控制流图精化的静态反汇编方法。该方法把二进制代码通过函数定位切分成单个函数,然后再对单个函数生成初始的过程内控制流图,使用图论的方法与汇编指令的特征匹配相结合,提炼出真实的控制流图。使用CoreUtils中的22个程序作为测试基准,使用2种线性扫描算法作为比较基准。实验结果表明:本文所提出的反汇编方法比Objdump快63.2%,并且可以高度精确地绘制出控制流图,因此具有准确度高、效率高的显著特性。
|
| 关 键 词: | 反汇编 控制流图 模糊化 |
Disassembly method based on control flow refining |
| |
| MA Jinxin,HU Chaojian,LI Zhoujun. Disassembly method based on control flow refining[J]. Journal of Tsinghua University(Science and Technology), 2011, 0(10): 1345-1350 |
| |
| Authors: | MA Jinxin HU Chaojian LI Zhoujun |
| |
| Affiliation: | MA Jinxin,HU Chaojian,LI Zhoujun(School of Computer Science and Engineering,Beihang University,Beijing 100191,China) |
| |
| Abstract: | Disassembly plays a fundamental and important role in reverse engineering.A static disassembly method based on a refining control flow graph was developed to improve disassembly accuracy and efficiency.The method slices the binary into functions and constructs an intra-procedure control flow graph for each function.Then,it extracts the real control flow graph as per graph theory and the assembly code features.This program evaluated 22 coreutils programs between these two linear sweep algorithms and is 63.2%... |
| |
| Keywords: | disassembly control flow graph obfuscation |
| 本文献已被 CNKI 等数据库收录! |
|
