Skip to Main content Skip to Navigation
Theses

L’usage de l’exécution symbolique pour la déobfuscation binaire en milieu industriel

Jonathan Salwan 1, 2
2 LCD-LIST - Laboratoire Capteurs Diamant
DM2I - Département Métrologie Instrumentation & Information : DRT/LIST/DM2I
Abstract : This doctoral work has been done in an industrial environment where the mainactivities were reverse engineering for vulnerability research and security properties verification on binary programs. The first part of this doctoral work focuses on the collection and sharing of the industrial problems when analyzing binary programs. Based on these issues, a binary dynamic analysis framework has been developed and formalized. Real examples of use are then presented, such as the detection of opaque predicates in branch conditions. Finally, a new automatic approach for deobfuscation of binary code protected by virtualization is presented combining features of the framework as well as those of other tools.
Document type :
Theses
Complete list of metadatas

Cited literature [109 references]  Display  Hide  Download

https://tel.archives-ouvertes.fr/tel-02966552
Contributor : Abes Star :  Contact
Submitted on : Wednesday, October 14, 2020 - 10:07:08 AM
Last modification on : Friday, October 16, 2020 - 3:28:43 AM

File

SALWAN_2020_diffusion.pdf
Version validated by the jury (STAR)

Identifiers

  • HAL Id : tel-02966552, version 1

Collections

Citation

Jonathan Salwan. L’usage de l’exécution symbolique pour la déobfuscation binaire en milieu industriel. Cryptographie et sécurité [cs.CR]. Université Grenoble Alpes [2020-..], 2020. Français. ⟨NNT : 2020GRALM005⟩. ⟨tel-02966552⟩

Share

Metrics

Record views

43

Files downloads

5