Week 4 (Software Defense I)

The material is subdivided in small videos. Please, watch the videos and go through the reading material in your own time. Also remember to work on the accompanying exercises sheet

Video Links Reading Material
Introduction to Static Analysis for Security video pdf 1. Sanjay Rawat and Laurent Mounier. 2012. Finding Buffer Overflow Inducing Loops in Binary Executables. In Proceedings of the 2012 IEEE Sixth International Conference on Software Security and Reliability (SERE ‘12). Section I, II Only pdf; 2. “Parfait – Designing a Scalable Bug Checker” Cristina Cifuentes and Bernhard Scholz. Proceedings of the 2008 workshop on Static analysis (SAW’08) 2008. paper video;
Introduction to Ghidra Scripting video pdf Ghidra User guide at link
Introduction to Dynamic Analysis and Intel Pin video pdf 1. Chapter 9 (upto section 9.4 only) of the book (if you have access): “Practical Binary Analysis” by Dennis Andriesse; 2. Intel Pin User Manual (For Pintool API and examples); 3. Ernst, Michael. (2003). Static and Dynamic Analysis: Synergy and Duality. In: WODA03. paper

Q&A Session