Dailydave mailing list archives
Re: PAPER: Dynamic Data Flow Analysis via Virtual Code Integration (aka The SpiderPig case)
From: "Piotr Bania" <bania.piotr () gmail com>
Date: Tue, 19 May 2009 06:03:31 +0200
No doubt in z0mbie's technical skills and the innovation he brought to the world of viruses. However i think it is good to remember that binary translation/code rewriting techniques (either static or dynamic)/binary code manipulation tools were used in the past (before 2000) - like in for example QPT(1994), Shade(1994), ATOM(1994), NJMC(1994), EEL(1995), Freeport Express(1995), FX!32 (1996), UQBT(1997?) etc. etc. Like i have stated in section 3.1 (page 17), my code integration definition/model meets more or less the "Proposed 1997 Architecture of a Retargetable Binary Translator" [1]. cheers, pb [1] - Cristina Cifuentes, Mike Van Emmerik, Norman Ramsey, and Brian Lewis. The University of Queensland Binary Translator (UQBT) Frame- work. 1996-2001. ----- Original Message ----- From: "Fosforo" <fosforo () gmail com> To: "Piotr Bania" <bania.piotr () gmail com> Cc: <dailydave () lists immunitysec com> Sent: Monday, May 18, 2009 10:09 PM Subject: Re: [Dailydave] PAPER: Dynamic Data Flow Analysis via Virtual Code Integration (aka The SpiderPig case) Am i the only one having a deja-vu on Z0mbie's work ? Of course isnt the same thing - i mean the integration part. http://andrewl.us/library/site_z0mbie/autorev.txt nice work. []s Fosforo On Mon, May 18, 2009 at 9:32 AM, Piotr Bania <bania.piotr () gmail com> wrote:
SpiderPig is a project created for performing and visualizing data flow analysis of a selected binary program. SpiderPig was created in the purpose of providing a tool which would be able to help vulnerability and security researchers with tracing and analyzing any necessary data and it's further propagation. Such tasks are very often crucial in the vulnerability discovering/identifying process and typically require a lot of time consuming manual work. Following paper discusses methods and techniques implemented in SpiderPig in order to perform semi-automatic data flow analysis. Paper is available here: http://piotrbania.com/all/spiderpig/pbania-spiderpig2008.pdf Simple video demo and some other things available on project website: http://piotrbania.com/all/spiderpig/ best regards, Piotr Bania -- -------------------------------------------------------------------- Piotr Bania - <bania.piotr () gmail com> - 0xCD, 0x19 Fingerprint: 413E 51C7 912E 3D4E A62A BFA4 1FF6 689F BE43 AC33 http://www.piotrbania.com - Key ID: 0xBE43AC33 -------------------------------------------------------------------- - "The more I learn about men, the more I love dogs." P.S Did ya know adult pigs can run at speeds of up to 11 miles an hour? _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
_______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- PAPER: Dynamic Data Flow Analysis via Virtual Code Integration (aka The SpiderPig case) Piotr Bania (May 18)
- Re: PAPER: Dynamic Data Flow Analysis via Virtual Code Integration (aka The SpiderPig case) Fosforo (May 18)
- Re: PAPER: Dynamic Data Flow Analysis via Virtual Code Integration (aka The SpiderPig case) Piotr Bania (May 19)