Code Disassembly Techniques - PowerPoint PPT Presentation

1 / 10
About This Presentation
Title:

Code Disassembly Techniques

Description:

Disassembly can be visualized as the reversal of the above process. Techniques. Static Techniques ... Challenges to Code Disassembly. Data type information ... – PowerPoint PPT presentation

Number of Views:87
Avg rating:3.0/5.0
Slides: 11
Provided by: julius3
Category:

less

Transcript and Presenter's Notes

Title: Code Disassembly Techniques


1
Code Disassembly Techniques
  • Julius Quiaot
  • Himanshu Ranavat
  • CMPE296T November 26, 2007

2
Agenda
  • Overview and Definitions
  • Techniques
  • Tools
  • Challenges to Code Disassembly
  • Applications
  • Prevention

3
Overview and Definitions
  • Assembler converts assembly language into binary
    equivalent code called machine instruction.
  • Linker combines all object files to produce an
    executable.
  • Loader loads the executable in memory for
    execution. Loaders are typically part of an OS.

4
Assembler, Linker and Loader
Disassembly can be visualized as the reversal of
the above process
5
Techniques
  • Static Techniques
  • Linear Sweep
  • Recursive Traversal
  • Example

6
Techniques (Contd)
  • Dynamic Techniques
  • Complements static techniques
  • Binary Interpretation using Runtime Disassembly
  • Disassembly Tools
  • IDAPro
  • Sourcer

7
Challenges to Code Disassembly
  • Data type information
  • Identification of Instruction and Data Sections
  • Platform Differences

8
Applications
  • Legitimate
  • Education
  • Code Optimization
  • Legacy Applications
  • Bug and Security Holes
  • Illegitimate
  • Security Circumvention

9
Prevention
  • Code Obfuscation
  • Rendering code unreadable and unintelligible
  • Rename variables and methods
  • Junk Bytes
  • Partial instructions to confuse disassemblers
  • Fake Jump Tables
  • Disrupt recursive traversal

10
Questions?
Write a Comment
User Comments (0)
About PowerShow.com