home.social
Sign in Create account

#programdiffing — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #programdiffing, aggregated by home.social.

  1. Joxean Koret (@matalaz) @[email protected] ·

    Today I realised that the oldest technology developed by me integrated into #Diaphora dates from 2009.

    In case you are curious, it's #DeepToad, a Python library for doing fuzzy hashing. This simplistic library calculates a set of 3 different hashes using a configurable block size (in opposite to, say, ssdeep, that doesn't work for this).

    github.com/joxeankoret/deeptoa

    #FuzzyHashing
    #DeepToad
    #Diaphora
    #BinDiffing
    #ProgramDiffing
    #BCSA

    #diaphora #deeptoad #fuzzyhashing #bindiffing #programdiffing #bcsa
  2. Joxean Koret (@matalaz) @[email protected] ·

    I know nobody gives a fuck, but this is my next research topic for this year: Finding #bugs & #vulnerabilities by #diffing binaries against sources. It sounds much harder than it actually is.

    #ProgramDiffing #VulnDev #VulnResearch #VulnerabilityDevelopment #VulnerabilityResearch #ReverseEngineering
    #Compilers #CompilerOptimizations #CompilersBugs #Miscompilations

    #bugs #vulnerabilities #diffing #programdiffing #vulndev #vulnresearch
  3. Joxean Koret (@matalaz) @[email protected] ·

    I know nobody gives a fuck, but this is my next research topic for this year: Finding #bugs & #vulnerabilities by #diffing binaries against sources. It sounds much harder than it actually is.

    #ProgramDiffing #VulnDev #VulnResearch #VulnerabilityDevelopment #VulnerabilityResearch #ReverseEngineering
    #Compilers #CompilerOptimizations #CompilersBugs #Miscompilations

    #bugs #vulnerabilities #diffing #programdiffing #vulndev #vulnresearch
  4. Joxean Koret (@matalaz) @[email protected] ·

    I know nobody gives a fuck, but this is my next research topic for this year: Finding #bugs & #vulnerabilities by #diffing binaries against sources. It sounds much harder than it actually is.

    #ProgramDiffing #VulnDev #VulnResearch #VulnerabilityDevelopment #VulnerabilityResearch #ReverseEngineering
    #Compilers #CompilerOptimizations #CompilersBugs #Miscompilations

    #bugs #vulnerabilities #diffing #programdiffing #vulndev #vulnresearch
  5. Joxean Koret (@matalaz) @[email protected] ·

    I know nobody gives a fuck, but this is my next research topic for this year: Finding #bugs & #vulnerabilities by #diffing binaries against sources. It sounds much harder than it actually is.

    #ProgramDiffing #VulnDev #VulnResearch #VulnerabilityDevelopment #VulnerabilityResearch #ReverseEngineering
    #Compilers #CompilerOptimizations #CompilersBugs #Miscompilations

    #miscompilations #compilersbugs #compileroptimizations #compilers #reverseengineering #vulnerabilityresearch
  6. Joxean Koret (@matalaz) @[email protected] ·

    I know nobody gives a fuck, but this is my next research topic for this year: Finding #bugs & #vulnerabilities by #diffing binaries against sources. It sounds much harder than it actually is.

    #ProgramDiffing #VulnDev #VulnResearch #VulnerabilityDevelopment #VulnerabilityResearch #ReverseEngineering
    #Compilers #CompilerOptimizations #CompilersBugs #Miscompilations

    #bugs #vulnerabilities #diffing #programdiffing #vulndev #vulnresearch
  7. Joxean Koret (@matalaz) @[email protected] ·

    Dear everyone in the academia using "Machine Learning" for Binary Code Similarity Analysis (ie, bindiffing): AI is bad for anything that requires exact results. It will generate a huge amount of false positives mixed with a varying degree of similar results and is pretty hard to understand its output.

    #bindiffing #BinaryDiffing #ProgramDiffing #MachineLearning #BCSA #ArtificialIntelligence

    #bindiffing #binarydiffing #programdiffing #machinelearning #bcsa #artificialintelligence