SlideShare a Scribd company logo

Bug hunting through_reverse_engineering

A
arif

The document discusses reverse engineering techniques for bug hunting and exploit development. It covers analyzing software, hardware, applications, operating systems and firmware through static and dynamic reverse engineering. Static techniques include disassembling and analyzing binary code while dynamic techniques involve emulating or debugging running programs. The document also discusses fuzzing techniques, common bug classes, challenges like obfuscated code, and tools like LLVM and LibFuzzer that can be used for reverse engineering and fuzzing. The overall goal of reverse engineering discussed is to develop exploits by finding and analyzing bugs, whether to develop without source code, bypass restrictions, or for malware analysis and curiosity.

Software
1 of 43
Downloaded 17 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
Bug Hunting Through Reverse Engineering d.monkey @ echo.or.id
Reverse Engineering
Reverse Engineering
Reverse Engineering -ETOOBIG
Software Hardware Computer
Software Hardware Computer Application Operating System Firmware HW
Software Hardware Computer Application Operating System Firmware HW
Application Computer Virtual Machines Native Application
Virtual Machines Computer Applications Native Application
Virtual Machines Applications Native Application Bytecode ISA Opcode
Virtual Machines Application based Virtual Machines Java Applications Python PHP Javascript
Native Applications Native Applications C / C++ Golang Rust Ocaml
Native Applications Native Applications C / C++ Golang Rust Ocaml
Native Apps C / C++ Source Code Compiler Native Apps
The Reason • Development With No Access To Source Code • Bypass Restrictions • Malware Analysis • Bug Hunting & Exploit Development • Self-Satistification of curiosity.
Another Reason
Another Reason
The Reason • Development With No Access To Source Code • Bypass Restrictions • Malware Analysis • Bug Hunting & Exploit Development • Self-Satistification of curiosity.
Exploit Development Fuzzing Analyze Exploitations
Fuzzing Generate Testcase Feed Input to Program Crash Repeat
Reversing and Fuzzing • RE is hard if the target is too complex. • RE is hard if such obfuscations implemented in the target • Fuzzing sometimes it just works, but without RE it’s just a plain bugs with no prior knownledge to exploit.
Reversing Nightmare • Software Obfuscations • Packer / Self Modifying Code • Code Flattening, Subtitutions, Dead Code Insertions, Etc. • Self Virtual Machines
Reversing Nightmare
Reversing Nightmare
Reversing Nightmare
Reversing Nightmare
Reversing Nightmare • Software Obfuscations • Packer / Self Modifying Code • Code Flattening, Subtitutions, Dead Code Insertions, Etc. • Self Virtual Machines
Bug Classes • Memory Corruptions • Race Conditions • Weak Cryptographic • Implementation / Architectural Flaw
Reverse Engineering Native Apps • Static Analysis • Dynamic Analysis
Static Analysis Native Apps Disassemble Analyze
Static Analysis • Pros • Good for analyzing a small apps / specific functions • Best to find implementation flaw a bad features • Cons • If the apps is to big it’s hard to find bugs • Hard to analyze if such obfuscations applied
Tool for Static Analysis
Dynamic Analysis Native Apps Emulate / Debugger Analyze
Dynamic Analysis • Pros • Good for analyzing obfuscated apps. • Good for analyzing complex apps. • Cons • Need to run apps so for some big apps is quite computations heavy.
Native Apps C / C++ Source Code Compiler Native Apps
LLVM
Native Apps C / C++ Source Code Compiler Native Apps Backend Frontend PASS
LLVM
LLVM IR
Fuzzing
Fuzzing with LibFuzzer C / C++ Source Code Compiler Native Apps Backend Frontend LibFuzzer LLVM PASS
Fuzzing with LibFuzzer Native Apps Compiler Native Apps Backend Frontend LibFuzzer Disassembler Bitcode Translations
DEMO

More Related Content

PPTX
Reverse Engineering.pptx
Sameer Sapra
 
PDF
Using Metrology Software to Capture Data for Reverse Engineering
Design World
 
PPTX
Agility reboot iv
Andrew Chum
 
PPTX
Performance Aware Development
Saurabh Badhwar
 
PDF
Heuristics ofsoftwaretestability
jicheng687
 
PPT
Re ppt1
KrushikRank1
 
PPTX
Defrag2014 anomalies final
James Urquhart
 
PDF
Introduction to Non Functional Requirement (NFR)
Sanjay Kumar
 
Reverse Engineering.pptx
Sameer Sapra
 
Using Metrology Software to Capture Data for Reverse Engineering
Design World
 
Agility reboot iv
Andrew Chum
 
Performance Aware Development
Saurabh Badhwar
 
Heuristics ofsoftwaretestability
jicheng687
 
Re ppt1
KrushikRank1
 
Defrag2014 anomalies final
James Urquhart
 
Introduction to Non Functional Requirement (NFR)
Sanjay Kumar
 

What's hot (20)

PPTX
Adressing nonfunctional requirements with agile practices
Mario Cardinal
 
PPTX
Differences asked in Software Testing Interview.
Siddharth Sharma
 
PPTX
Status report #7
gtrevino80
 
PPTX
Software engineering
Mandavi Classes
 
PPTX
Status report #8
gtrevino80
 
PPT
Introduction to Software Enigneering
university of education,Lahore
 
PDF
WQD2011 - INNOVATION - DEWA - Substation Signal Analyzer Software
Dubai Quality Group
 
PPTX
Software Testing
university of education,Lahore
 
PDF
Current_Resume
Jacob Batts
 
PPTX
Simply zdlc
Dr. Bippin Makoond
 
PPT
Sdlc 4
university of education,Lahore
 
PPTX
Computer aided software engineering
ČhauÐhařÿ Faísal Ãlï
 
PPTX
Function Points
LuxoftAgilePractice
 
PPTX
Software engineering 14 software quality metrics
Vaibhav Khanna
 
PPT
System Design
university of education,Lahore
 
DOC
Joseph G Scott
Joe Scott
 
PDF
Function Points
Chris Farrell
 
PPTX
formal verification
Toseef Aslam
 
PDF
Biometric Authentication Hardware Device Teq Diligent Case Study
Teq Diligent
 
PPTX
An Introduction to Iterative Software Development
Geoffrey Weglarz
 
Adressing nonfunctional requirements with agile practices
Mario Cardinal
 
Differences asked in Software Testing Interview.
Siddharth Sharma
 
Status report #7
gtrevino80
 
Software engineering
Mandavi Classes
 
Status report #8
gtrevino80
 
Introduction to Software Enigneering
university of education,Lahore
 
WQD2011 - INNOVATION - DEWA - Substation Signal Analyzer Software
Dubai Quality Group
 
Software Testing
university of education,Lahore
 
Current_Resume
Jacob Batts
 
Simply zdlc
Dr. Bippin Makoond
 
Sdlc 4
university of education,Lahore
 
Computer aided software engineering
ČhauÐhařÿ Faísal Ãlï
 
Function Points
LuxoftAgilePractice
 
Software engineering 14 software quality metrics
Vaibhav Khanna
 
System Design
university of education,Lahore
 
Joseph G Scott
Joe Scott
 
Function Points
Chris Farrell
 
formal verification
Toseef Aslam
 
Biometric Authentication Hardware Device Teq Diligent Case Study
Teq Diligent
 
An Introduction to Iterative Software Development
Geoffrey Weglarz
 
Ad

Viewers also liked (15)

PDF
Binary exploitation - AIS3
Angel Boy
 
PDF
SECCON 2016 Online CTF [Memory Analysis] Write-Up (ver.korean)
Se-Han Lee
 
PPT
Glibc malloc internal
Motohiro KOSAKI
 
PDF
Sigreturn Oriented Programming
Angel Boy
 
PDF
Heap exploitation
Angel Boy
 
PDF
Advanced heap exploitaion
Angel Boy
 
PDF
Play with FILE Structure - Yet Another Binary Exploit Technique
Angel Boy
 
PPT
Introduction to Reverse Engineering
Gopinath Chintala
 
PPTX
Reverse engineering
Yuffie Valen
 
PPT
Introduction to Reverse Engineering
Dobromir Enchev
 
PDF
Reverse engineering
Syed Zillay Ali
 
PPT
Reverse Engineering
dswanson
 
PPTX
Reverse engineering & its application
mapqrs
 
PPTX
Reverse engineering
ananya0122
 
PPTX
AI and Machine Learning Demystified by Carol Smith at Midwest UX 2017
Carol Smith
 
Binary exploitation - AIS3
Angel Boy
 
SECCON 2016 Online CTF [Memory Analysis] Write-Up (ver.korean)
Se-Han Lee
 
Glibc malloc internal
Motohiro KOSAKI
 
Sigreturn Oriented Programming
Angel Boy
 
Heap exploitation
Angel Boy
 
Advanced heap exploitaion
Angel Boy
 
Play with FILE Structure - Yet Another Binary Exploit Technique
Angel Boy
 
Introduction to Reverse Engineering
Gopinath Chintala
 
Reverse engineering
Yuffie Valen
 
Introduction to Reverse Engineering
Dobromir Enchev
 
Reverse engineering
Syed Zillay Ali
 
Reverse Engineering
dswanson
 
Reverse engineering & its application
mapqrs
 
Reverse engineering
ananya0122
 
AI and Machine Learning Demystified by Carol Smith at Midwest UX 2017
Carol Smith
 
Ad

Similar to Bug hunting through_reverse_engineering (20)

PDF
Webinar slides: Introduction to Database Proxies (for MySQL)
Continuent
 
PDF
Kicking Down Silos: Co-Designing Software & Hardware to Create Great Products
Kinoma
 
PPTX
Intro to PhoneGap
Chris Griffith
 
PDF
Here Be Dragons – Advanced JavaScript Debugging
FITC
 
PDF
FITC - Here Be Dragons: Advanced JavaScript Debugging
Rami Sayar
 
PDF
Pipeline as code for your infrastructure as Code
Kris Buytaert
 
PDF
Sensible scaling
Rowan Merewood
 
PPTX
Static-Analysis-in-Industry.pptx
ShivashankarHR1
 
PDF
Symfony Live NYC 2014 - Rock Solid Deployment of Symfony Apps
Pablo Godel
 
PDF
Cross platform mobile approaches
Phuong Hoang Vu
 
PPTX
Jason Kent - AppSec Without Additional Tools
centralohioissa
 
PDF
Badoo: Cross platform Mobile Test Automation and Continuos Delivery
CodeFest
 
ODP
Continuous Delivery of (y)our infrastructure.
Kris Buytaert
 
PDF
SymfonyCon Madrid 2014 - Rock Solid Deployment of Symfony Apps
Pablo Godel
 
PDF
Machine programming
DESMOND YUEN
 
ODP
JavaOne 2014 Security Testing for Developers using OWASP ZAP
Simon Bennetts
 
PDF
Write Generic Code with the Tooling API
Adam Olshansky
 
PDF
Getting your mobile test automation process in place - using Cucumber and Cal...
Niels Frydenholm
 
PPTX
From Web to Mobile with Stage 3D
Jean-Philippe Doiron
 
PDF
Abusing bleeding edge web standards for appsec glory
Priyanka Aash
 
Webinar slides: Introduction to Database Proxies (for MySQL)
Continuent
 
Kicking Down Silos: Co-Designing Software & Hardware to Create Great Products
Kinoma
 
Intro to PhoneGap
Chris Griffith
 
Here Be Dragons – Advanced JavaScript Debugging
FITC
 
FITC - Here Be Dragons: Advanced JavaScript Debugging
Rami Sayar
 
Pipeline as code for your infrastructure as Code
Kris Buytaert
 
Sensible scaling
Rowan Merewood
 
Static-Analysis-in-Industry.pptx
ShivashankarHR1
 
Symfony Live NYC 2014 - Rock Solid Deployment of Symfony Apps
Pablo Godel
 
Cross platform mobile approaches
Phuong Hoang Vu
 
Jason Kent - AppSec Without Additional Tools
centralohioissa
 
Badoo: Cross platform Mobile Test Automation and Continuos Delivery
CodeFest
 
Continuous Delivery of (y)our infrastructure.
Kris Buytaert
 
SymfonyCon Madrid 2014 - Rock Solid Deployment of Symfony Apps
Pablo Godel
 
Machine programming
DESMOND YUEN
 
JavaOne 2014 Security Testing for Developers using OWASP ZAP
Simon Bennetts
 
Write Generic Code with the Tooling API
Adam Olshansky
 
Getting your mobile test automation process in place - using Cucumber and Cal...
Niels Frydenholm
 
From Web to Mobile with Stage 3D
Jean-Philippe Doiron
 
Abusing bleeding edge web standards for appsec glory
Priyanka Aash
 

Recently uploaded (20)

PDF
Understanding Forklifts - TECH EHS Solution
TECH EHS Solution
 
PDF
Internet Downloader Manager (IDM) Crack 6.42 Build 42 Updates Latest 2025
itskinga12
 
PDF
top salesforce developer skills in 2025.pdf
CloudMetic
 
PDF
medical staffing services at VALiNTRY
Tiyan Grayson
 
PPTX
CHAPTER 2 - PM Management and IT Context
KevinPutra14
 
PDF
AI in Product Development-omnex systems
omnex systems
 
PDF
Upgrade and Innovation Strategies for SAP ERP Customers
Virendra Rai, PMP
 
PPTX
history of c programming in notes for students .pptx
Vijayakumari829030
 
PDF
Design an Analysis of Algorithms II-SECS-1021-03
DilanEscobar1
 
PDF
Raksha Bandhan Grocery Pricing Trends in India 2025.pdf
Actowiz Solustions
 
PDF
Flood Susceptibility Mapping Using Image-Based 2D-CNN Deep Learnin. Overview ...
lawrenceomai2
 
PPTX
ISO 45001 Occupational Health and Safety Management System
EHA Soft Solutions
 
PDF
Wondershare Filmora 15 Crack With Activation Key [2025
ghrom2211g
 
PDF
How to Migrate SBCGlobal Email to Yahoo Easily
raymondjones7273
 
PPTX
Oracle E-Business Suite: A Comprehensive Guide for Modern Enterprises
Conacent Consulting
 
PDF
Design an Analysis of Algorithms I-SECS-1021-03
DilanEscobar1
 
PDF
System and Network Administraation Chapter 3
jaramharo
 
PDF
Nekopoi APK 2025 free lastest update
umarali35kp
 
PPTX
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean
 
PDF
Addressing The Cult of Project Management Tools-Why Disconnected Work is Hold...
OnePlan Solutions
 
Understanding Forklifts - TECH EHS Solution
TECH EHS Solution
 
Internet Downloader Manager (IDM) Crack 6.42 Build 42 Updates Latest 2025
itskinga12
 
top salesforce developer skills in 2025.pdf
CloudMetic
 
medical staffing services at VALiNTRY
Tiyan Grayson
 
CHAPTER 2 - PM Management and IT Context
KevinPutra14
 
AI in Product Development-omnex systems
omnex systems
 
Upgrade and Innovation Strategies for SAP ERP Customers
Virendra Rai, PMP
 
history of c programming in notes for students .pptx
Vijayakumari829030
 
Design an Analysis of Algorithms II-SECS-1021-03
DilanEscobar1
 
Raksha Bandhan Grocery Pricing Trends in India 2025.pdf
Actowiz Solustions
 
Flood Susceptibility Mapping Using Image-Based 2D-CNN Deep Learnin. Overview ...
lawrenceomai2
 
ISO 45001 Occupational Health and Safety Management System
EHA Soft Solutions
 
Wondershare Filmora 15 Crack With Activation Key [2025
ghrom2211g
 
How to Migrate SBCGlobal Email to Yahoo Easily
raymondjones7273
 
Oracle E-Business Suite: A Comprehensive Guide for Modern Enterprises
Conacent Consulting
 
Design an Analysis of Algorithms I-SECS-1021-03
DilanEscobar1
 
System and Network Administraation Chapter 3
jaramharo
 
Nekopoi APK 2025 free lastest update
umarali35kp
 
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean
 
Addressing The Cult of Project Management Tools-Why Disconnected Work is Hold...
OnePlan Solutions
 

Bug hunting through_reverse_engineering