Please enable JavaScript.
Coggle requires JavaScript to display documents.
2012 - InputTracer: A data-flow analysis tool for manual program…
2012 - InputTracer: A data-flow analysis tool for manual program comprehension of x86 binaries
Information
Dynamic Taint Analysis
Taint Sink
Taint Label
Large number of vulnerabilities is discovered by independent security practitioners analyzing program binaries.
Researchers often interested how the program uses its input
Approach
InputTraccer
Tool for dynamic taint analysis for manual program comprehension and analysis of unmodified binariees with DTA
Valgrind 32-bit x86 Linux
Provide dynamic binary instrumentation with API
Used dynamic binary instrumentation to propagate taint
Dynamic Taint Analysis
Taint sinks
Control- flow altering instructions
System calls
Parts of the sample observed for interaction with the tainted data
Taint sink event
Instance when tainted data used in taint sink and recorded
Data
Type of taint sink
Location of taint sink in code
Current stack trace
Union of all taint lables
Taint propagation
Filtering
Input filtering
Only considers some input/range of individual input
Taint sink exclusion
Restricting taint sink event generation to a certain executable or certain part of the executable
Taint source: regular files and standard input (stdin)
Results in trace file containing all taint sink event in chronological order
Usage
Command line interface