YoVDO

Detecting Bugs Using Decompilation and Data Flow Analysis

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Software Development Courses Cybersecurity Courses Static Analysis Courses Decompilation Courses Binary Analysis Courses

Course Description

Overview

Explore a comprehensive presentation from Black Hat USA 2013 on Bugalyze.com, a free online web service for detecting software bugs and vulnerabilities through static analysis of binary executables. Discover how this innovative tool combines decompilation and data flow analysis to uncover issues like use-after-frees and double frees. Learn about the system's architecture, consisting of over 100,000 lines of C++ code and a scalable, load-balanced multi-node Amazon EC2 cluster. Gain insights into Bugwise's development process and its successful application in finding real bugs and vulnerabilities in Debian Linux, including double free, use-after-free, and numerous getenv(,strcpy) bugs discovered through scanning the entire Debian repository.

Syllabus

Black Hat USA 2013 - Bugalyze.com - Detecting Bugs Using Decompilation and Data Flow Analysis


Taught by

Black Hat

Related Courses

Software as a Service
University of California, Berkeley via Coursera Software Testing
University of Utah via Udacity The Hardware/Software Interface
University of Washington via Coursera Software Debugging
Saarland University via Udacity Introduction to Systematic Program Design - Part 1
The University of British Columbia via Coursera