Emily R. Jacobson scite author profile

Emily R. Jacobson

3Publications

34Citation Statements Received

17Citation Statements Given

How they've been cited

How they cite others

Affiliations

University of Wisconsin–Madison

Publications

Order By: Most citations

Labeling library functions in stripped binaries

Jacobson

Rosenblum

Miller

2011

View full text Add to dashboard Cite

Binary code presents unique analysis challenges, particularly when debugging information has been stripped from the executable. Among the valuable information lost in stripping are the identities of standard library functions linked into the executable; knowing the identities of such functions can help to optimize automated analysis and is instrumental in understanding program behavior. Library fingerprinting attempts to restore the names of library functions in stripped binaries, using signatures extracted from reference libraries. Existing methods are brittle in the face of variations in the toolchain that produced the reference libraries and do not generalize well to new library versions. We introduce semantic descriptors, high-level representations of library functions that avoid the brittleness of existing approaches. We have extended a tool, unstrip, to apply this technique to fingerprint wrapper functions in the GNU C library. unstrip discovers functions in a stripped binary and outputs a new binary, with meaningful names added to the symbol table. Other tools can leverage these symbols to perform further analysis. We demonstrate that our semantic descriptors generalize well and substantially outperform existing library fingerprinting techniques.

show abstract

Detecting Code Reuse Attacks with a Model of Conformant Program Execution

Jacobson

Bernat

Williams

et al. 2014

View full text Add to dashboard Cite

A Lightweight Library for Building Scalable Tools

Jacobson

Brim

Miller

2012

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Emily R. Jacobson

Labeling library functions in stripped binaries

Detecting Code Reuse Attacks with a Model of Conformant Program Execution

A Lightweight Library for Building Scalable Tools

Contact Info

Product

Resources

About