research-article

Hybrid analysis of executables to detect security vulnerabilities: security vulnerabilities

Authors:

Pranith D. Kumar,

Anchal Nema,

Rajeev KumarAuthors Info & Claims

ISEC '09: Proceedings of the 2nd India software engineering conference

Pages 141 - 142

https://doi.org/10.1145/1506216.1506248

Published: 23 February 2009 Publication History

Get Access

Abstract

Detection of vulnerabilities in executables is one of the major challenges facing the software industry and is mainly due to the unavailability of the source code. In this work, we present a hybrid approach which is a combination of static and dynamic analysis to identify vulnerabilities. In this approach, we first instrument the executable using PIN to extract the control flow and the corresponding assembly code using disassembler. We then perform static analysis on the assembly code for constraint bound checking using control flow and register bounds. In this way, we exploit the synergy between static and dynamic analysis to detect memory leaks, buffer overflow and dangling pointers.

References

[1]

J. Bergeron, M. Debbabi, M. M. Erhioui, and B. Ktari. Static analysis of binary code to isolate malicious behaviors. In Proceedings of the 8th Workshop on Enabling Technologies on Infrastructure for Collaborative Enterprises, pages 184--189, 1999.

Digital Library

Google Scholar

[2]

M. D. Ernst. Static and dynamic analysis: synergy and duality. In In WODA 2003: ICSE Workshop on Dynamic Analysis, pages 24--27, 2003.

Google Scholar

[3]

C. Keung Luk, R. Cohn, R. Muth, H. Patil, A. Klauser, G. Lowney, S. Wallace, V. Janapa, and R. K. Hazelwood. PIN: Building customized program analysis tools with dynamic instrumentation. In Proceedings of PLDI, pages 190--200. ACM Press, 2005.

Digital Library

Google Scholar

Cited By

View all

Supriya YKumar GSowjanya DYadav DKameshwari D(2020)Malware Detection Techniques: A Survey2020 Sixth International Conference on Parallel, Distributed and Grid Computing (PDGC)10.1109/PDGC50313.2020.9315764(25-30)Online publication date: 6-Nov-2020
https://doi.org/10.1109/PDGC50313.2020.9315764
Du MHill J(2020)Using Multi-core Architectures to Improve the Performance of Real-time Dynamic Binary Instrumentation2020 IEEE 23rd International Symposium on Real-Time Distributed Computing (ISORC)10.1109/ISORC49007.2020.00038(167-175)Online publication date: May-2020
https://doi.org/10.1109/ISORC49007.2020.00038
Elberzhager FMünch JNha V(2018)A systematic mapping study on the combination of static and dynamic quality assurance techniquesInformation and Software Technology10.1016/j.infsof.2011.06.00354:1(1-15)Online publication date: 29-Dec-2018
https://dl.acm.org/doi/10.1016/j.infsof.2011.06.003
Show More Cited By

Index Terms

Hybrid analysis of executables to detect security vulnerabilities: security vulnerabilities
1. Security and privacy
  1. Cryptography
    1. Cryptanalysis and other attacks
  2. Intrusion/anomaly detection and malware mitigation
2. Social and professional topics
  1. Computing / technology policy
    1. Computer crime

Recommendations

Preventing Memory Error Exploits with WIT
SP '08: Proceedings of the 2008 IEEE Symposium on Security and Privacy

Attacks often exploit memory errors to gain control over the execution of vulnerable programs. These attacks remain a serious problem despite previous research on techniques to prevent them. We present Write Integrity Testing (WIT), a new technique that ...
Mitigating program security vulnerabilities: Approaches and challenges

Programs are implemented in a variety of languages and contain serious vulnerabilities which might be exploited to cause security breaches. These vulnerabilities have been exploited in real life and caused damages to related stakeholders such as program ...
On the capability of static code analysis to detect security vulnerabilities

Context: Static analysis of source code is a scalable method for discovery of software faults and security vulnerabilities. Techniques for static code analysis have matured in the last decade and many tools have been developed to support automatic ...

Comments

Information & Contributors

Information

Published In

ISEC '09: Proceedings of the 2nd India software engineering conference

February 2009

154 pages

ISBN:9781605584263

DOI:10.1145/1506216

General Chair:
Kiran Deshpande
Airtight Networks, Pune
,
Program Chairs:
Pankaj Jalote
Indian Institute of Technology Delhi
,
Sriram Rajamani
Microsoft Research India

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 23 February 2009

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

ISEC '09

Sponsor:

ISEC '09: India Software Engineering Conference

February 23 - 26, 2009

Pune, India

Acceptance Rates

Overall Acceptance Rate 76 of 315 submissions, 24%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

6
Total Citations
View Citations
314
Total Downloads

Downloads (Last 12 months)12
Downloads (Last 6 weeks)0

Reflects downloads up to 02 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Supriya YKumar GSowjanya DYadav DKameshwari D(2020)Malware Detection Techniques: A Survey2020 Sixth International Conference on Parallel, Distributed and Grid Computing (PDGC)10.1109/PDGC50313.2020.9315764(25-30)Online publication date: 6-Nov-2020
https://doi.org/10.1109/PDGC50313.2020.9315764
Du MHill J(2020)Using Multi-core Architectures to Improve the Performance of Real-time Dynamic Binary Instrumentation2020 IEEE 23rd International Symposium on Real-Time Distributed Computing (ISORC)10.1109/ISORC49007.2020.00038(167-175)Online publication date: May-2020
https://doi.org/10.1109/ISORC49007.2020.00038
Elberzhager FMünch JNha V(2018)A systematic mapping study on the combination of static and dynamic quality assurance techniquesInformation and Software Technology10.1016/j.infsof.2011.06.00354:1(1-15)Online publication date: 29-Dec-2018
https://dl.acm.org/doi/10.1016/j.infsof.2011.06.003
Jadhav AVidyarthi DHemavathy M. (2016)Evolution of evasive malwares: A survey2016 International Conference on Computational Techniques in Information and Communication Technologies (ICCTICT)10.1109/ICCTICT.2016.7514657(641-646)Online publication date: Mar-2016
https://doi.org/10.1109/ICCTICT.2016.7514657
Mouzarani MSadeghiyan BZolfaghari M(2016)A smart fuzzing method for detecting heap‐based vulnerabilities in executable codesSecurity and Communication Networks10.1002/sec.16819:18(5098-5115)Online publication date: 16-Nov-2016
https://doi.org/10.1002/sec.1681
Shahriar HZulkernine M(2012)Mitigating program security vulnerabilitiesACM Computing Surveys (CSUR)10.1145/2187671.218767344:3(1-46)Online publication date: 14-Jun-2012
https://dl.acm.org/doi/10.1145/2187671.2187673

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract

References

Cited By

Index Terms

Recommendations

Preventing Memory Error Exploits with WIT

Mitigating program security vulnerabilities: Approaches and challenges

On the capability of static code analysis to detect security vulnerabilities

Comments

Information

Published In

Sponsors

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Conference

Acceptance Rates

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations