Experimental News Clipping Site

Tag: symbolic execution

  • Hacker News: Grease: An Open-Source Tool for Uncovering Hidden Vulnerabilities in Binary Code

    by

    Kurt Seifried
    in

    Source URL: https://www.galois.com/articles/introducing-grease Source: Hacker News Title: Grease: An Open-Source Tool for Uncovering Hidden Vulnerabilities in Binary Code Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses GREASE, an open-source tool designed for binary analysis through under-constrained symbolic execution, aimed at enhancing system security by identifying vulnerabilities in binary code. It highlights…

  • Hacker News: Grease: An Open-Source Tool for Uncovering Hidden Vulnerabilities in Binary Code

    by

    Kurt Seifried
    in

    Source URL: https://www.galois.com/articles/introducing-grease Source: Hacker News Title: Grease: An Open-Source Tool for Uncovering Hidden Vulnerabilities in Binary Code Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses GREASE, an open-source tool designed for binary analysis through under-constrained symbolic execution, aimed at enhancing system security by identifying vulnerabilities in binary code. It highlights…

  • Cloud Blog: ScatterBrain: Unmasking the Shadow of PoisonPlug’s Obfuscator

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/topics/threat-intelligence/scatterbrain-unmasking-poisonplug-obfuscator/ Source: Cloud Blog Title: ScatterBrain: Unmasking the Shadow of PoisonPlug’s Obfuscator Feedly Summary: Written by: Nino Isakovic Introduction Since 2022, Google Threat Intelligence Group (GTIG) has been tracking multiple cyber espionage operations conducted by China-nexus actors utilizing POISONPLUG.SHADOW. These operations employ a custom obfuscating compiler that we refer to as “ScatterBrain," facilitating…

  • Hacker News: LLVM-Powered Devirtualization

    by

    system automation
    in

    Source URL: https://blog.thalium.re/posts/llvm-powered-devirtualization/ Source: Hacker News Title: LLVM-Powered Devirtualization Feedly Summary: Comments AI Summary and Description: Yes Summary: The text elaborates on the techniques and methodologies for deobfuscating virtualized binaries, primarily utilizing dynamic taint analysis and LLVM optimization strategies. This study showcases new approaches to reverse engineering obfuscated binaries, which is critical in the context…

  • Cloud Blog: LummaC2: Obfuscation Through Indirect Control Flow

    by

    system automation
    in

    Source URL: https://cloud.google.com/blog/topics/threat-intelligence/lummac2-obfuscation-through-indirect-control-flow/ Source: Cloud Blog Title: LummaC2: Obfuscation Through Indirect Control Flow Feedly Summary: Written by: Nino Isakovic, Chuong Dong Overview This blog post delves into the analysis of a control flow obfuscation technique employed by recent LummaC2 (LUMMAC.V2) stealer samples. In addition to the traditional control flow flattening technique used in older versions, the…