YoVDO

Detecting Bugs Using Decompilation and Data Flow Analysis

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Software Development Courses Cybersecurity Courses Static Analysis Courses Decompilation Courses Binary Analysis Courses

Course Description

Overview

Explore a comprehensive presentation from Black Hat USA 2013 on Bugalyze.com, a free online web service for detecting software bugs and vulnerabilities through static analysis of binary executables. Discover how this innovative tool combines decompilation and data flow analysis to uncover issues like use-after-frees and double frees. Learn about the system's architecture, consisting of over 100,000 lines of C++ code and a scalable, load-balanced multi-node Amazon EC2 cluster. Gain insights into Bugwise's development process and its successful application in finding real bugs and vulnerabilities in Debian Linux, including double free, use-after-free, and numerous getenv(,strcpy) bugs discovered through scanning the entire Debian repository.

Syllabus

Black Hat USA 2013 - Bugalyze.com - Detecting Bugs Using Decompilation and Data Flow Analysis


Taught by

Black Hat

Related Courses

Computer Security
Stanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network