Advertisement

Dynamic binary analysis using angr siddharth muralee

Cysinfo Cyber Security Community
Aug. 3, 2017
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee
Dynamic binary analysis using angr siddharth muralee

Check these out next

Threat Hunting with Elastic at SpectorOps: Welcome to HELK
Threat Hunting with Elastic at SpectorOps: Welcome to HELK
Elasticsearch
ICEIT'20 Cython for Speeding-up Genetic Algorithm
ICEIT'20 Cython for Speeding-up Genetic Algorithm
Ahmed Gad
Static Slicing Technique with Algorithmic Approach
Static Slicing Technique with Algorithmic Approach
IOSR Journals
Programing Slicing and Its applications
Programing Slicing and Its applications
Ankur Jain
When and how to explore: an engineer's guide
When and how to explore: an engineer's guide
Julie Pitt
Cinder On-boarding Room - Berlin (11-13-2018)
Cinder On-boarding Room - Berlin (11-13-2018)
Jay Bryant
Cinder Project On-Boarding - OpenInfra Summit Denver 2019
Cinder Project On-Boarding - OpenInfra Summit Denver 2019
Jay Bryant
Understanding Malware Persistence Techniques by Monnappa K A
Understanding Malware Persistence Techniques by Monnappa K A
Cysinfo Cyber Security Community
1 of 16

Dynamic binary analysis using angr siddharth muralee

Aug. 3, 2017
Download to read offline
Technology

Dynamic binary analysis using angr siddharth muralee More info : https://cysinfo.com/10th-quarterly-meetup-29th-july-2017/

Cysinfo Cyber Security Community
Advertisement
Advertisement
Advertisement

Recommended

Automating commits in GitHub - Subhajeet Mukherjee - SF Python - 03/11/20Automating commits in GitHub - Subhajeet Mukherjee - SF Python - 03/11/20
Automating commits in GitHub - Subhajeet Mukherjee - SF Python - 03/11/20Subhajeet Mukherjee52 views11 slides
Transformers - Part 1Transformers - Part 1
Transformers - Part 1Akshika Wijesundara67 views24 slides
Agile Secure DevelopmentAgile Secure Development
Agile Secure DevelopmentBosnia Agile823 views30 slides
Certified Deep Learning Specialist (CDLS)Certified Deep Learning Specialist (CDLS)
Certified Deep Learning Specialist (CDLS)GICTTraining14 views9 slides
Machine learning and time series dataMachine learning and time series data
Machine learning and time series dataInfluxData375 views25 slides
TIP1 - Overview of C/C++ Debugging/Tracing/Profiling ToolsTIP1 - Overview of C/C++ Debugging/Tracing/Profiling Tools
TIP1 - Overview of C/C++ Debugging/Tracing/Profiling ToolsXiaozhe Wang11.4K views44 slides

More Related Content

Similar to Dynamic binary analysis using angr siddharth muralee(7)

Threat Hunting with Elastic at SpectorOps: Welcome to HELKThreat Hunting with Elastic at SpectorOps: Welcome to HELK
Threat Hunting with Elastic at SpectorOps: Welcome to HELK
Elasticsearch20.1K views
ICEIT'20 Cython for Speeding-up Genetic AlgorithmICEIT'20 Cython for Speeding-up Genetic Algorithm
ICEIT'20 Cython for Speeding-up Genetic Algorithm
Ahmed Gad1.4K views
Static Slicing Technique with Algorithmic ApproachStatic Slicing Technique with Algorithmic Approach
Static Slicing Technique with Algorithmic Approach
IOSR Journals323 views
Programing Slicing and Its applicationsPrograming Slicing and Its applications
Programing Slicing and Its applications
Ankur Jain2.6K views
When and how to explore: an engineer's guideWhen and how to explore: an engineer's guide
When and how to explore: an engineer's guide
Julie Pitt144 views
Cinder On-boarding Room - Berlin (11-13-2018)Cinder On-boarding Room - Berlin (11-13-2018)
Cinder On-boarding Room - Berlin (11-13-2018)
Jay Bryant120 views
Cinder Project On-Boarding - OpenInfra Summit Denver 2019Cinder Project On-Boarding - OpenInfra Summit Denver 2019
Cinder Project On-Boarding - OpenInfra Summit Denver 2019
Jay Bryant102 views

More from Cysinfo Cyber Security Community(20)

Understanding Malware Persistence Techniques by Monnappa K AUnderstanding Malware Persistence Techniques by Monnappa K A
Understanding Malware Persistence Techniques by Monnappa K A
Cysinfo Cyber Security Community4K views
Understanding & analyzing obfuscated malicious web scripts by Vikram KharviUnderstanding & analyzing obfuscated malicious web scripts by Vikram Kharvi
Understanding & analyzing obfuscated malicious web scripts by Vikram Kharvi
Cysinfo Cyber Security Community569 views
Getting started with cybersecurity through CTFs by Shruti Dixit & Geethna TKGetting started with cybersecurity through CTFs by Shruti Dixit & Geethna TK
Getting started with cybersecurity through CTFs by Shruti Dixit & Geethna TK
Cysinfo Cyber Security Community619 views
Emerging Trends in Cybersecurity by Amar PrustyEmerging Trends in Cybersecurity by Amar Prusty
Emerging Trends in Cybersecurity by Amar Prusty
Cysinfo Cyber Security Community570 views
A look into the sanitizer family (ASAN & UBSAN) by Akul PillaiA look into the sanitizer family (ASAN & UBSAN) by Akul Pillai
A look into the sanitizer family (ASAN & UBSAN) by Akul Pillai
Cysinfo Cyber Security Community1.5K views
Closer look at PHP Unserialization by Ashwin ShenoiCloser look at PHP Unserialization by Ashwin Shenoi
Closer look at PHP Unserialization by Ashwin Shenoi
Cysinfo Cyber Security Community4.2K views
Unicorn: The Ultimate CPU Emulator by Akshay AjayanUnicorn: The Ultimate CPU Emulator by Akshay Ajayan
Unicorn: The Ultimate CPU Emulator by Akshay Ajayan
Cysinfo Cyber Security Community1.4K views
The Art of Executing JavaScript by Akhil MahendraThe Art of Executing JavaScript by Akhil Mahendra
The Art of Executing JavaScript by Akhil Mahendra
Cysinfo Cyber Security Community656 views
Reversing and Decrypting Malware Communications by MonnappaReversing and Decrypting Malware Communications by Monnappa
Reversing and Decrypting Malware Communications by Monnappa
Cysinfo Cyber Security Community1.2K views
DeViL - Detect Virtual Machine in Linux by SreelakshmiDeViL - Detect Virtual Machine in Linux by Sreelakshmi
DeViL - Detect Virtual Machine in Linux by Sreelakshmi
Cysinfo Cyber Security Community574 views
Analysis of android apk using adhrit by Abhishek J.M Analysis of android apk using adhrit by Abhishek J.M
Analysis of android apk using adhrit by Abhishek J.M
Cysinfo Cyber Security Community763 views
Understanding evasive hollow process injection techniques monnappa k aUnderstanding evasive hollow process injection techniques monnappa k a
Understanding evasive hollow process injection techniques monnappa k a
Cysinfo Cyber Security Community797 views
Security challenges in d2d communication by ajithkumar vyasaraoSecurity challenges in d2d communication by ajithkumar vyasarao
Security challenges in d2d communication by ajithkumar vyasarao
Cysinfo Cyber Security Community393 views
S2 e (selective symbolic execution) -shivkrishna aS2 e (selective symbolic execution) -shivkrishna a
S2 e (selective symbolic execution) -shivkrishna a
Cysinfo Cyber Security Community525 views
Bit flipping attack on aes cbc - ashutosh ahelleyaBit flipping attack on aes cbc - ashutosh ahelleya
Bit flipping attack on aes cbc - ashutosh ahelleya
Cysinfo Cyber Security Community2.4K views
Security Analytics using ELK stack Security Analytics using ELK stack
Security Analytics using ELK stack
Cysinfo Cyber Security Community1.3K views
Linux Malware Analysis Linux Malware Analysis
Linux Malware Analysis
Cysinfo Cyber Security Community2.5K views
Introduction to Binary Exploitation Introduction to Binary Exploitation
Introduction to Binary Exploitation
Cysinfo Cyber Security Community1.1K views
ATM Malware: Understanding the threat ATM Malware: Understanding the threat
ATM Malware: Understanding the threat
Cysinfo Cyber Security Community3K views
XXE - XML External Entity Attack XXE - XML External Entity Attack
XXE - XML External Entity Attack
Cysinfo Cyber Security Community3.7K views
Advertisement

Recently uploaded(20)

Migrating to the Cloud - From Preparation to Operation copy.pdfMigrating to the Cloud - From Preparation to Operation copy.pdf
Migrating to the Cloud - From Preparation to Operation copy.pdf
Symptai Consulting Limited0 views
MS EXCEL LESSON.pptxMS EXCEL LESSON.pptx
MS EXCEL LESSON.pptx
JoeyGarancho10 views
Multi Standard Mixed Mode.pdfMulti Standard Mixed Mode.pdf
Multi Standard Mixed Mode.pdf
MbBot0 views
SYN: Ultra-Scale
Software Evolution Comprehension [ICPC 2023]SYN: Ultra-Scale
Software Evolution Comprehension [ICPC 2023]
SYN: Ultra-Scale
Software Evolution Comprehension [ICPC 2023]
Roberto Minelli0 views
Managing a WordPress Multisite NetworkManaging a WordPress Multisite Network
Managing a WordPress Multisite Network
Jonathan Bossenger0 views
Secure all things with CBSecurity 3Secure all things with CBSecurity 3
Secure all things with CBSecurity 3
Ortus Solutions, Corp0 views
CDP_Presentation.pptxCDP_Presentation.pptx
CDP_Presentation.pptx
Abbas3358830 views
Into The Box 2023 Keynote Day 1Into The Box 2023 Keynote Day 1
Into The Box 2023 Keynote Day 1
Ortus Solutions, Corp0 views
WordPress Coding StandardsWordPress Coding Standards
WordPress Coding Standards
Jonathan Bossenger0 views
Howard Wilner Explains the Impact of 5G on Automotive ManufacturersHoward Wilner Explains the Impact of 5G on Automotive Manufacturers
Howard Wilner Explains the Impact of 5G on Automotive Manufacturers
jimcarns0 views
Site Directed Mutagenesis (SDM).pptxSite Directed Mutagenesis (SDM).pptx
Site Directed Mutagenesis (SDM).pptx
TechnoIndiaUniversit0 views
PPT-Security-for-Management.pptxPPT-Security-for-Management.pptx
PPT-Security-for-Management.pptx
RSAArcher0 views
SRE-Week-09-Refining-the-system-definition-05052023-114706pm.pptxSRE-Week-09-Refining-the-system-definition-05052023-114706pm.pptx
SRE-Week-09-Refining-the-system-definition-05052023-114706pm.pptx
Hassankhalid8949400 views
Theben DALI-2 Room SolutionTheben DALI-2 Room Solution
Theben DALI-2 Room Solution
Ivory Egg0 views
REPORT: Heating appliances market in Poland 2022REPORT: Heating appliances market in Poland 2022
REPORT: Heating appliances market in Poland 2022
SPIUG0 views
KMM - Kanban Maturity ModelKMM - Kanban Maturity Model
KMM - Kanban Maturity Model
Adail Viana Neto0 views
cross over cabling.pptcross over cabling.ppt
cross over cabling.ppt
JoeyGarancho10 views
2023 Global Privacy Benchmarks Survey - Webinar May 30 2023.pdf2023 Global Privacy Benchmarks Survey - Webinar May 30 2023.pdf
2023 Global Privacy Benchmarks Survey - Webinar May 30 2023.pdf
TrustArc0 views
Exploratory Data Analysis - A Comprehensive Guide to EDA.pdfExploratory Data Analysis - A Comprehensive Guide to EDA.pdf
Exploratory Data Analysis - A Comprehensive Guide to EDA.pdf
StephenAmell40 views
2023-05-31_ESWC.pptx2023-05-31_ESWC.pptx
2023-05-31_ESWC.pptx
Anisa Rula0 views

Dynamic binary analysis using angr siddharth muralee

  1. DYNAMIC BINARY ANALYSIS USING ANGR Presented by : Siddharth M Cysinfo Meetup - July ‘17 1
  2. About me ●Siddharth M ( @tr3x) ●2nd Year BTech CSE student at Amrita University ●Member of team bi0s ●Focusing on Reverse Engineering 2
  3. www.ctftime.org3
  4. Outline ●What is Binary Analysis ? ●Introduction to Angr ●Various uses of Angr ●Symbolic Execution ●Using Angr to perform SE ●Hooking ●Using Angr to perform Hooking 4
  5. “ Process of analysing an executable to gain a better idea of its working is called Binary analysis 5
  6. Why do we need to Automate it? ●Save a lot of time and effort ●Avoid human error ●Cost - effective ●Boring ●All factors accounted for 6
  7. Angr ●Shellphish’s entry for DARPA’s CGC - came 3rd ●Python based framework ●Open Source ●Can detect and exploit vulnerabilities Installation instructions at angr.io www.angr.io7
  8. Various uses of Angr ●Control Flow Graph recovery ●Symbolic Execution ●ROP chain generation ●Binary Hardening ●Exploit Generation 8
  9. Symbolic Execution Analysing a program to determine the input/inputs to be given to make each part of the program to execute. 9
  10. www.shellstorm.org 10
  11. Angr and Symbolic Execution ● Symbolic variables ● Finds paths that are important ● Makes constrains related to the variable ● Solves those constraints using z3 11
  12. Demo Challenge : unbreakable-enterprise Google CTF 2016 12
  13. Hooking Hooking is a technique used while reverse engineering where certain instructions/calls are replaced with custom made functions and calls. 13
  14. Hooking is used for ●Faster Reverse Engineering ●Tracing function calls ●Parameter checking ●Logging 14
  15. Demo 2 15
  16. Summary ●Angr uses symbolic variables and constraints to find out more about executable. ●Angr can hook functions ●Paths , Path groups ●States - entry state , blank state ●explore - find, avoid ●se - solver engine ● Claripy ●Library functions 16
Advertisement