Improving the performance of reverse debugging

Климушенкова, М. А.; Dovgalyuk, Pavel

doi:10.1134/s0361768817010042

Cited by 2 publications

(1 citation statement)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The coding fragments are shown in Table I. As shown in the variable s in Table I, during simulation execution and taint analysis, it is impossible to accurately assign the external input variable or simulate the external input that can explore all execution paths [17]. Therefore, it is necessary to apply some methods to analyze the code that operates on the external input data as much as possible during simulation execution and taint analysis.…”

Section: Analysis Flow and Algorithm Of Taint Informationmentioning

confidence: 99%

An Iootfuzzer Method for Vulnerability Mining of Internet of Things Devices based on Binary Source Code and Feedback Fuzzing

Guo¹,

Wang²,

Dong³

et al. 2022

IJACSA

View full text Add to dashboard Cite

With the technological progress of the Internet and 5G communication network, more and more Internet of Things devices are used in it. Limited by the cost, power consumption and other factors of Internet of Things devices, the systems carried by the Internet of Things devices often lack the security protection provided by larger equipment systems such as desktop computers. Because the current personal computers and servers mostly use the x86 architecture, and the previous research on security tools or hardware-based security analysis feature support is mostly based on the x86 architecture, the traditional security analysis techniques cannot be applied to the current large-scale ARM-based and MIPS-based Internet of Things devices. Based on this, this paper studies the firmware binary program of common Linux-based Internet of Things devices. A binary static instrumentation technology based on taint information analysis is proposed. The paper also analyzes how to use the binary static instrumentation technology combined with static analysis results to rewrite binary programs and obtain taint path information when binary programs are executed. Firmware binary fuzzing technology based on model constraints and path feedback is studied to cover more dangerous execution paths in the target program. Finally, iootfuzzer, a prototype vulnerability mining system for firmware binaries of Internet of Things devices, is used to test and analyze the two technologies. The results show that its fuzzing efficiency for Internet of Things devices is better than other fuzzing technologies such as boofuzz and Peach 3. It can fill in some gaps in the current security analysis tools for the Internet of Things devices and improve the efficiency of security analysis for Internet of Things devices, which contributes to the field through automated security vulnerability detection systems.

show abstract

Section: Analysis Flow and Algorithm Of Taint Informationmentioning

confidence: 99%

An Iootfuzzer Method for Vulnerability Mining of Internet of Things Devices based on Binary Source Code and Feedback Fuzzing

Guo¹,

Wang²,

Dong³

et al. 2022

IJACSA

View full text Add to dashboard Cite

show abstract

What is reverse debugging? Classification of reverse debugging methods

Dmitriev

Dovgalyuk

Макаров

2019

J. Phys.: Conf. Ser.

View full text Add to dashboard Cite

The article discusses an approach to speeding up the search complex errors in software – reverse debugging. In this approach, debugging is divided into two phase. The first phase is to save the behaviour to a log file. The second phase is the reproduction of behaviour and the search for errors. During the second phase, both past and future program states can be examined. The article describes methods that support this approach and general principles for such methods and their differences. A classification of reverse debugging methods is proposed by debugging scope and replay scope. Examples of modern reverse debugging tools and their place in the proposed classification are given.

show abstract

Improving the performance of reverse debugging

Cited by 2 publications

References 3 publications

An Iootfuzzer Method for Vulnerability Mining of Internet of Things Devices based on Binary Source Code and Feedback Fuzzing

An Iootfuzzer Method for Vulnerability Mining of Internet of Things Devices based on Binary Source Code and Feedback Fuzzing

What is reverse debugging? Classification of reverse debugging methods

Contact Info

Product

Resources

About