Dynamic binary analysis is a prevalent and indispensable technique in program analysis. While several dynamic binary analysis tools and frameworks have been proposed, all suffer from one or more of: prohibitive performance degradation, a semantic gap between the analysis code and the execution under analysis, architecture/OS specificity, being user-mode only, and lacking flexibility and extendability. This dissertation describes the design of the Dynamic Executable Code Analysis Framework (DECAF), a virtual machine-based, multi-target, whole-system dynamic binary analysis framework. In short, DECAF seeks to address the shortcomings of existing whole-system dynamic analysis tools and extend the state of the art by utilizing a combination of ...
We propose a framework that provides a programming in-terface to perform complex dynamic system-leve...
This thesis describes the design, implementation, and evaluation of a dynamic program analysis frame...
Virtual Machine Introspection is the process of introspecting guest VM’s memory and reconstructing t...
Dynamic binary analysis is a prevalent and indispensable technique in program analysis. While severa...
The complexity of modern software makes it difficult to ship correct programs. Errors can cost money...
Dynamic analysis is an important technique used in malware analysis and is complementary to static a...
While one always works to prevent attacks and failures, they are inevitable and situational awarenes...
This dissertation describes monitoring methods to achieve both security and reliability in virtualiz...
The ability to reverse the most advanced software protection schemes is a critical step in mitigatin...
Today's mainstream operating systems (OSs) have monolithic kernels, in which low-level systems softw...
In this dissertation, we focus on dynamic analyses that examine the data handled by programs and ope...
We present HyperSleuth, a framework that leverages the virtualization extensions provided by commodi...
International audienceIn this paper, we present a virtual machine, VMAD (Virtual Machine for Advance...
We present HyperSleuth, a framework that leverages the virtualization extensions provided by commodi...
In this research, a compiled memory analysis tool for virtualization (CMAT-V) is developed as a virt...
We propose a framework that provides a programming in-terface to perform complex dynamic system-leve...
This thesis describes the design, implementation, and evaluation of a dynamic program analysis frame...
Virtual Machine Introspection is the process of introspecting guest VM’s memory and reconstructing t...
Dynamic binary analysis is a prevalent and indispensable technique in program analysis. While severa...
The complexity of modern software makes it difficult to ship correct programs. Errors can cost money...
Dynamic analysis is an important technique used in malware analysis and is complementary to static a...
While one always works to prevent attacks and failures, they are inevitable and situational awarenes...
This dissertation describes monitoring methods to achieve both security and reliability in virtualiz...
The ability to reverse the most advanced software protection schemes is a critical step in mitigatin...
Today's mainstream operating systems (OSs) have monolithic kernels, in which low-level systems softw...
In this dissertation, we focus on dynamic analyses that examine the data handled by programs and ope...
We present HyperSleuth, a framework that leverages the virtualization extensions provided by commodi...
International audienceIn this paper, we present a virtual machine, VMAD (Virtual Machine for Advance...
We present HyperSleuth, a framework that leverages the virtualization extensions provided by commodi...
In this research, a compiled memory analysis tool for virtualization (CMAT-V) is developed as a virt...
We propose a framework that provides a programming in-terface to perform complex dynamic system-leve...
This thesis describes the design, implementation, and evaluation of a dynamic program analysis frame...
Virtual Machine Introspection is the process of introspecting guest VM’s memory and reconstructing t...