Results 1 - 1 of 1

Unleashing Mayhem on Binary Code

by Sang Kil Cha, Thanassis Avgerinos, Re Rebert, David Brumley - In Proceedings of the IEEE Symposium on Security and Privacy , 2012
"... Abstract—In this paper we present MAYHEM, a new sys-tem for automatically finding exploitable bugs in binary (i.e., executable) programs. Every bug reported by MAYHEM is accompanied by a working shell-spawning exploit. The working exploits ensure soundness and that each bug report is security-critic ..."
Abstract - Cited by 28 (4 self) - Add to MetaCart
-critical and actionable. MAYHEM works on raw binary code without debugging information. To make exploit generation possible at the binary-level, MAYHEM addresses two major technical challenges: actively managing execution paths without exhausting memory, and reasoning about symbolic memory indices, where a load or a
Results 1 - 1 of 1