NDLTD Global ETD Search
  • Refine Query
  • Source
  • Publication year
  • to
  • Language
  • 4
  • Tagged with
  • 5
  • 5
  • 3
  • 3
  • 3
  • 2
  • 1
  • 1
  • 1
  • 1
  • 1
  • 1
  • 1
  • 1
  • 1
  • About
  • The Global ETD Search service is a free service for researchers to find electronic theses and dissertations. This service is provided by the Networked Digital Library of Theses and Dissertations.
    Our metadata is collected from universities around the world. If you manage a university/consortium/country archive and want to be added, details can be found on the NDLTD website.

Search results

Showing 1 to 5 of 5 (0.012 seconds)

Spelling suggestions: "subject:"ghidra"" "subject:"anhidra""

1

Extracting Information From Subroutines using Static Analysis Semantics

Burnett, Luke A. 19 May 2020 (has links)
No description available.
Computer Engineering
Computer Science
ghidra
static
analysis
structure
recovery
scripting
2

Automated Differentiation of Chat Application Versions and Categorisation of Changes Based on Forensic Relevance / Automatiserad Differentiering av Chattapplikationsversioner och Kategorisering av ÄndringarBaserade på Forensisk Relevans

Ljungsten, Ted, Makowski, Adam January 2024 (has links)
This thesis investigates the automation of forensic analysis in identifying and categorising forensically interestingchanges across different versions of chat applications on Android platforms. The focus is primarily on thedifferentiation of Android Package Kit (APK) using reverse-engineering techniques to reconstruct the originalsource code and comparing the source code from two different versions of the APK. Given the rapid evolutionof chat applications and their frequent updates, it is crucial for forensic investigators to understand thesechanges to maintain the integrity of legal investigations.The research introduces a comprehensive framework leveraging the open-source tools, Ghidra and BinDiff, toautomate the decompilation and differential analysis of APK files. This approach not only makes forensicanalysis less complicated but also ensures that investigators can keep pace with the continuous updates in chatapplications.Tests on the system are conducted on various versions of the Signal chat application. These tests aim todemonstrate the proposed tool in capturing significant changes between APK versions, such as alterations inlogging mechanisms, database interactions, and the use of encryption and cypher libraries.The results confirm that the integration of Ghidra and BinDiff provides a solution for automated forensicanalysis, facilitating the identification of changes and categorisation of methods based on their forensicrelevance. The study shows that the tool can pinpoint modifications and structural changes, which are essentialfor forensic investigations.
Ghidra
Bindiff
Python
Automation
Decompilation
Differentiation
Chat app
Chat application
Automation script
Ghidra
Bindiff
Python Automation
Dekompilering
Differensiering
Chatt app
Chatt applikation
Automatisations scriptcript
Computer Systems
Datorsystem
3

Detection of Avionics Supply Chain Non-control-flow Malware Using Binary Decompilation and Wavelet Analysis

Hill, Jeremy Michael Olivar 09 August 2021 (has links)
No description available.
Computer Engineering
Computer Science
Electrical Engineering
non-control-flow Trojans
decompilation
Ghidra
wavelet analysis
discrete wavelet transform
4

Evaluating Similarity of Cross-Architecture Basic Blocks

Meyer, Elijah L. 26 May 2022 (has links)
No description available.
Computer Science
neural network
long short term memory
natural language processing
architecture
ghidra
analysis
binary
similarity detection
keras
intermediate representation
ARM
x86
5

EMULATION FOR MULTIPLE INSTRUCTION SET ARCHITECTURES

Christopher M Wright (10645670) 07 May 2021 (has links)
<p>System emulation and firmware re-hosting are popular techniques to answer various security and performance related questions, such as, does a firmware contain security vulnerabilities or meet timing requirements when run on a specific hardware platform. While this motivation for emulation and binary analysis has previously been explored and reported, starting to work or research in the field is difficult. Further, doing the actual firmware re-hosting for various Instruction Set Architectures(ISA) is usually time consuming and difficult, and at times may seem impossible. To this end, I provide a comprehensive guide for the practitioner or system emulation researcher, along with various tools that work for a large number of ISAs, reducing the challenges of getting re-hosting working or porting previous work for new architectures. I layout the common challenges faced during firmware re-hosting and explain successive steps and survey common tools to overcome these challenges. I provide emulation classification techniques on five different axes, including emulator methods, system type, fidelity, emulator purpose, and control. These classifications and comparison criteria enable the practitioner to determine the appropriate tool for emulation. I use these classifications to categorize popular works in the field and present 28 common challenges faced when creating, emulating and analyzing a system, from obtaining firmware to post emulation analysis. I then introduce a HALucinator [1 ]/QEMU [2 ] tracer tool named HQTracer, a binary function matching tool PMatch, and GHALdra, an emulator that works for more than 30 different ISAs and enables High Level Emulation.</p>
Computer Engineering
Computer Software
Computer System Security
emulation
firmware
re-hosting
ghidra
GHALdra
HQ-Tracer
PMatch
vxworks
Re-hosting Support Layer
High Level Emulation

Page generated in 0.0324 seconds