In many applications, source code and debugging symbols of a target program are not
available, and the only thing that we can access is the program executable. A fundamental …

This paper presents S2E, a platform for analyzing the properties and behavior of software
systems. We demonstrate S2E's use in developing practical tools for comprehensive …

Mondrian memory protection (MMP) is a fine-grained protection scheme that allows multiple
protection domains to flexibly share memory and export protected services. In contrast to …

Dynamic binary analysis (DBA) tools such as profilers and checkers help programmers
create better software. Dynamic binary instrumentation (DBI) frameworks make it easy to …

Techniques for off-device anti-malware protection for mobile devices are disclosed. In some
embodiments, off-device anti malware protection for mobile devices includes receiving a …

The structure of a decompiler is presented, along with a thorough description of the different
modules that form part of a decompiler, and the type of analyses that are performed on the …

There are many security tools and techniques for analyzing software, but many of them
require access to source code. We propose leveraging decompilation, the study of …

Security analysis and vulnerability testing results are “pack aged” or “bound to” the actual
software it describes. By linking the results to the software itself, downstream users of the …

Static detection of malware variants plays an important role in system security and control
flow has been shown as an effective characteristic that represents polymorphic malware. In …

Techniques for in-line filtering of insecure or unwanted mobile components or
communications (eg, insecure or unwanted behaviors associated with applications for …