FOOCODECHU FOR SOFTWARE ANALYSIS, MALWARE DETECTION, & VULN RESEARCH

No ratings

Presented at Ruxcon 2012 by

Silvio Cesare

This talk explains the free web services provided by FooCodeChu - what they can be used for and how they work. Demos of three services will be shown. The first offering, Simseer, is a web service that performs software binary-level similarity detection and visualization of program relationships. This has applications in detecting software theft and plagiarism. It can also be applied to malware variant detection. The service performs automated unpacking using a 32-bit x86 application-level emulator written from scratch. The next service, Bugwise, can detect software bugs and vulnerabilities in executable binaries. It works using decompilation and data flow analysis. Finally, Clonewise is an open source service to identify code reuse in Linux using source-level analysis. Users of the service submit a tarball of their source tree and Clonewise reports if the code is shared with any packages in Debian and Ubuntu Linux. This system is planned to be integrated into the Debian Linux infrastructure.