reverse engineering
play

Reverse Engineering Dr. Vadim Zaytsev aka @grammarware UvA, MSc - PowerPoint PPT Presentation

Sep 11, 2022 •422 likes •751 views

Reverse Engineering Dr. Vadim Zaytsev aka @grammarware UvA, MSc SE, 9 November 2015 Roadmap W44 Introduction V.Zaytsev W45 Metaprogramming J.Vinju W46 Reverse Engineering V.Zaytsev W47 Software Analytics M.Bruntink W48 Clone

  1. Reverse Engineering Dr. Vadim Zaytsev aka @grammarware UvA, MSc SE, 9 November 2015

  2. Roadmap W44 Introduction V.Zaytsev W45 Metaprogramming J.Vinju W46 Reverse Engineering V.Zaytsev W47 Software Analytics M.Bruntink W48 Clone Management M.Bruntink W49 Source Code Manipulation V.Zaytsev W50 Legacy and Renovation TBA W51 Conclusion V.Zaytsev

  3. restructuring restructuring restructuring forward forward Requirements Architecture Implementation engineering engineering reverse reverse engineering engineering re-eng re-eng E.Chikofsky, J.H.Cross II, Reverse Engineering and Design Discovery: A Taxonomy. IEEE Software 7:1, 1990.

  4. Objectives of reverse engineering * Cope with complexity * Generate alternate views * Recover lost info * Detect side effects * Synthesise higher abstractions * Facilitate reuse E.Chikofsky, J.H.Cross II, Reverse Engineering and Design Discovery: A Taxonomy. IEEE Software 7:1, 1990.

  5. Code Reverse Engineering

  6. Code reverse engineering * Parsing * Fact extraction * Slicing * Pattern matching * Decomposition * Exploration H.A.Müller, J.H.Jahnke, D.B.Smith, M.-A.Storey, S.R.Tilley, K.Wong, Reverse Engineering: A Roadmap, ICSE 2000. http://bibtex.github.io/ICSE-2000-Future-MullerJSSTW.html

  7. Parsing * Well-developed since… * Recognising structure * text → tree * parse tree → AST * forest disambiguation * tokens → list * image → visual model A.V. Aho & J.D. Ullman, The Theory of Parsing, Translation and Compiling, 1972. V.Zaytsev, A.H.Bagge, Parsing in a Broad Sense, MoDELS 2014.

  8. ↑ Parsing * Reduce the input back to the start symbol * Recognise terminals * Replace terminals by nonterminals * Replace terminals and nonterminals by lhs * LR(1) ::= yacc | Beaver | Eli | SableCC | Irony; * GLR ::= bison | DMS | GDK | Tom; * SGLR ::= ASF+SDF | Spoofax | Stratego;

  9. ↓ Parsing * Imitate production by rederivation * Each nonterminal is a goal * Replace each goal by subgoals * Parse tree is built from top to bottom * LL(k) ::= JavaCC; LL(*) ::= ANTLR | TXL; * Earley ::= Marpa | ModelCC; DCG ::= Prolog; * GLL ::= Rascal | gll-combinators; * Packrat ::= Rats! | OMeta | PetitParser;

  10. Semiparsing * grep * anchor terminals * islands & noise * skeleton grammars * relaxation & robustness * multilanguage V.Zaytsev, Formal Foundations for Semi-Parsing, CSMR-WCRE ERA, 2014 http://bibtex.github.io/CSMR-WCRE-2014-Zaytsev.html

  11. Fact extraction = parsing + generating a factbase (or, sequence of graph transformations) * e.g., metrics * Can be language-parametric! * Schema * describes form of the data * ASG = Abstract Semantic Graph * call graph * dependence graph * relations Y.Lin, R.C.Holt, Formalizing Fact Extraction, ATEM 2003. http://bibtex.github.io/ATEM-2003-LinH04.html

  12. Slicing read(text); read(n); lines = 1; chars = 1; subtext = ""; c = getChar(text); while (c != ‘\eof’) if (c == ‘\n’) then lines = lines + 1; chars = chars + 1; else chars = chars + 1; if (n != 0) then subtext = subtext ++ c; n = n - 1; c = getChar(text); write(lines); write(chars); write(subtext); J. Silva, A Vocabulary of Program Slicing-Based Techniques, CSUR, 2012.

  13. Slicing * Forward/backward slicing * Dynamic/conditioned slicing * constraints on input * Chopping * discover connection between I & O * Amorphous slicing * . . . J. Silva, A Vocabulary of Program Slicing-Based Techniques, CSUR, 2012.

  14. Slicing * Debugging * cf. Weiser CACM 1982 * Cohesion measurement * cf. Ott&Bieman IST 1998 * Comprehension * cf. De Lucia&Fasolino&Munro IWPC 1996 * Maintenance * e.g. reuse * Re-engineering * e.g. clone detection http://www0.cs.ucl.ac.uk/staff/mharman/sf.html

  15. Pattern matching * Easy to formulate on ADTs * In Rascal: * visit(){case} * := and !:= * functions * Need traversal strategies * depth-first (pre-, in-, post-order) * breadth-first * topdown, bottomup, downup * innermost, outermost * . . . E.Visser, Z.Benaissa, A.P.Tolmach, Building Program Optimizers with Rewriting Strategies, ICFP 1998. http://bibtex.github.io/ICFP-1998-VisserBT.html

  16. Decomposition * Recall partitioning & equiv. classes * Simplest form: modularisation * Usually: some graph + SCCs * Given granularity * make a valid decomposition * maximising benefit * Applicable to packages, build targets, automata, tasks, formulae, processes, rels… M.Vakilian, R.Sauciuc, J.D.Morgenthaler, V.Mirrokni, Automated Decomposition of Build Targets, ICSE 2015 http://bibtex.github.io/ICSE-v1-2015-VakilianSMM.html

  17. Exploration Software visualisation Algorithm Program visualisation visualisation Data animation Static Static code Static data algorithm visualisation visualisation visualisation Visual programming Algorithm animation Code animation B.A.Price, R.M.Baecker, I.S.Small, A Principled Taxonomy of Software Visualization, JVLC 1993

  18. Visualisation T.Babaian, W.T.Lucas, M.Li, Modernizing Exploration and Navigation in Enterprise Systems with Interactive Visualizations, HCI 2015. http://bibtex.github.io/HIMI-IKD-2015-BabaianLL.html

  19. Trace vis F.Fittkau, S.Finke, W.Hasselbring, J.Waller, Comparing trace visualizations for program comprehension through controlled experiments, ICPC 2015. http://bibtex.github.io/ICPC-2015-FittkauFHW.html

  20. Versioning vis Version and popularity Library sorting Bar Library Version divisions Vertical rearrangement Combination Links between library bars. Thickness indicates popularity Horizontal rearrangement Y.Yano, R.G.Kula, T.Ishio, K.Inoue, VerXCombo: an interactive data visualization of popular library version combinations, ICPC 2015. http://bibtex.github.io/ICPC-2015-YanoKII.html

  21. Release vis a b c d e ’ B.A.Aseniero, T.Wun, D.Ledo, G.Ruhe, A.Tang, S.Carpendale, STRATOS: Using Visualization to Support Decisions in Strategic Software Release Planning, CHI 2015. http://bibtex.github.io/CHI-2015-AsenieroWLRTC.html resources into the (d) alternative’s releases, and eventually to the (e) features. ’s et al. could help simplify the planner’s task

  22. Data Reverse Engineering

  23. Data reverse engineering * Database design recovery * Pattern recognition * Information retrieval * Clustering * Mining unstructured data H.A.Müller, J.H.Jahnke, D.B.Smith, M.-A.Storey, S.R.Tilley, K.Wong, Reverse Engineering: A Roadmap, ICSE 2000. http://bibtex.github.io/ICSE-2000-Future-MullerJSSTW.html

  24. Database design recovery * Forward database engineering * Conceptual design * Logical design * Simplification * Optimisation * Translation * Physical design * View design J.-L.Hainaut, J.Henrard, J.-M.Hick, D.Roland, V.Englebert, Database Design Recovery, CAiSE, 1996. http://bibtex.github.io/CAiSE-1996-HainautHHRE.html

  25. Database design recovery * Data structure extraction * Program analysis * Data analysis * Schema integration * Data structure conceptualisation * Untranslation * Deoptimisation * Conceptual normalisation J.-L.Hainaut, J.Henrard, D.Roland, V.Englebert, J.-M.Hick, Structure Elicitation in Database Reverse Engineering, WCRE 1996 http://bibtex.github.io/WCRE-1996-HainautHREH.html

  26. Pattern recognition * Pattern = feature vector * Quantitative features * continuous / discrete / interval * Qualitative features * nominal / ordinal * Find most descriptive/discriminatory K.C.Gowda, E.Diday, Symbolic clustering using a new dissimilarity measure. IEEE TSMC 22, 1992.

  27. Information retrieval * Knowledge discovery * Data mining * Usually statistical methods * = require training * WEKA = Waikato Environment for Knowledge Analysis * Java, 1992–2015 * http://www.cs.waikato.ac.nz/ml/weka/ * good with Groovy, Scala, Jython… M.Hall, E.Frank, G.Holmes, B.Pfahringer, P.Reutemann, I.H.Witten, The WEKA data mining software: an update, SIGKDD Explorations Newsletter 11:1, 2009.

  28. Clustering * Pattern recognition & representation * similarity/proximity measure * Minkowski / edit / statistical * Clustering techniques * hierarchical / partitional * agglomerative / divisive * hard / fuzzy * incremental / non-incremental * Dendrograms A.K.Jain, M.N.Murty, P.J.Flynn, Data clustering: a review, CSUR 31:3, 1999.

  29. MUD * Mixture * natural language text * technical artefacts * Unstructured data * dev communication * issue reports * documentation * meeting notes

  30. MUD * Can fish for * code fragments * class names * stack traces * patches * jargon * State of the art * heuristic-based idiosyncratic tools N.Bettenburg, B.Adams, A.E.Hassan, M.Smidt, A Lightweight Approach to Uncover Technical Artifacts in Unstructured Data, ICPC 2011. http://bibtex.github.io/ICPC-2011-BettenburgAHS.html

  31. Conclusion * Besides forward engineering * there is reverse engineering * Software comprehension * Code reverse engineering * parsing, slicing, matching, visualising * Data reverse engineering * design recovery, PR, IR, clustering, MUD * Mature yet active field

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a

Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a

Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a product, understand how it works Usually limited to certain aspects, not full systems Need to know a little bit about a lot of topics to gain

636 views • 11 slides
Reverse Engineering TCP/ IP Reverse Engineering TCP/ IP Steven Low EAS, Caltech Joint work

Reverse Engineering TCP/ IP Reverse Engineering TCP/ IP Steven Low EAS, Caltech Joint work

Reverse Engineering TCP/ IP Reverse Engineering TCP/ IP Steven Low EAS, Caltech Joint work with: Li J W Li, J. Wang, Pongsajapan, Tan, Tang, M. Wang P j T T M W Outline Background Layering as optimization decomposition L

932 views • 47 slides
Next-Generation Debuggers For Reverse Engineering For Reverse Engineering The ERESI team

Next-Generation Debuggers For Reverse Engineering For Reverse Engineering The ERESI team

Next-Generation Debuggers For Reverse Engineering For Reverse Engineering The ERESI team eresi@asgardlabs.org This presentation is about .. The Embedded ERESI debugger : e2dbg The Embedded ERESI tracer : etrace The ERESI reverse

849 views • 47 slides
CS 166: Information Security Reverse Engineering & Digital Rights Management Prof. Tom

CS 166: Information Security Reverse Engineering & Digital Rights Management Prof. Tom

CS 166: Information Security Reverse Engineering & Digital Rights Management Prof. Tom Austin San Jos State University SRE Software Reverse Engineering Also known as Reverse Code Engineering (RCE) Or simply reversing

1.04k views • 80 slides
Reverse Engineering MAC: A Non-Cooperative Game Model Jianwei Huang Information Engineering The

Reverse Engineering MAC: A Non-Cooperative Game Model Jianwei Huang Information Engineering The

Reverse Engineering MAC: A Non-Cooperative Game Model Jianwei Huang Information Engineering The Chinese University of Hong Kong Joint work with J.-W. Lee, A. Tang, M. Chiang and A. R. Canderbank J. Huang (CUHK) Reverse Engineering MAC Nov.

605 views • 38 slides
Reverse Engineering Closed, heterogeneous platforms and the defenders dilemma Looking back at

Reverse Engineering Closed, heterogeneous platforms and the defenders dilemma Looking back at

Reverse Engineering Closed, heterogeneous platforms and the defenders dilemma Looking back at the last 20 years of RE and looking ahead at the next few SSTIC 2018 -- Thomas Dullien (Halvar Flake) Progress in Reverse Engineering 2010

941 views • 64 slides
Cryptanalysis, Reverse-Engineering and Design of Symmetric Cryptographic Algorithms Lo Perrin

Cryptanalysis, Reverse-Engineering and Design of Symmetric Cryptographic Algorithms Lo Perrin

Cryptanalysis, Reverse-Engineering and Design of Symmetric Cryptographic Algorithms Lo Perrin SnT, University of Luxembourg April 25, 2017 PhD Defence Introduction On S-Box Reverse-Engineering On Lightweight Cryptography Conclusion

1.76k views • 137 slides
Reverse engineering basics @KirilsSolovjovs on twitter Mg.sc.comp. Kirils Solovjovs

Reverse engineering basics @KirilsSolovjovs on twitter Mg.sc.comp. Kirils Solovjovs

Reverse engineering basics @KirilsSolovjovs on twitter Mg.sc.comp. Kirils Solovjovs http://kirils.org for more Possible Security Reverse engineering? www.indiamart.com Contents Hardware architecture Processors and machine language

536 views • 25 slides
Understanding human speech recognition: Reverse-engineering the engineering solution using

Understanding human speech recognition: Reverse-engineering the engineering solution using

Cai Wingfield CSLB, Department of Psychology Workshop on Neurocomputation: From Brains to Machines University of Cambridge 25 November 2015 Understanding human speech recognition: Reverse-engineering the engineering solution using EMEG

196 views • 18 slides
Reverse Engineering CAPTCHAs Abram Hindle, Micheal W. Godfrey, Richard C. Holt Software

Reverse Engineering CAPTCHAs Abram Hindle, Micheal W. Godfrey, Richard C. Holt Software

Reverse Engineering CAPTCHAs WCRE 2008 Reverse Engineering CAPTCHAs Abram Hindle, Micheal W. Godfrey, Richard C. Holt Software Architecture Group David R. Cheriton School of Computer Science University of Waterloo Canada

726 views • 57 slides
Reverse engineering AT32UC3As JTAG Introduction Overview LSE Summer Week 2014 TAP

Reverse engineering AT32UC3As JTAG Introduction Overview LSE Summer Week 2014 TAP

Reverse engineering AT32UC3As JTAG Pierre Surply Reverse engineering AT32UC3As JTAG Introduction Overview LSE Summer Week 2014 TAP Controller Scan Chain Pierre Surply Boundary Scan UC3 JTAG EPITA 2016 Reverse engineering Jul

968 views • 72 slides
Reverse Engineering DSP Code GameCube DSP Analyzing GCN DSP code Pierre Bourdon Conclusion

Reverse Engineering DSP Code GameCube DSP Analyzing GCN DSP code Pierre Bourdon Conclusion

Reverse Engineering DSP Code Pierre Bourdon Introduction DSP Reverse Engineering DSP Code GameCube DSP Analyzing GCN DSP code Pierre Bourdon Conclusion delroth@lse.epita.fr http://lse.epita.fr February 12, 2013 Context Reverse

856 views • 18 slides
Introduction .NET Reverse Engineering Eric DePree Introduction to .NET Programs written for

Introduction .NET Reverse Engineering Eric DePree Introduction to .NET Programs written for

Introduction .NET Reverse Engineering Eric DePree Introduction to .NET Programs written for .NET are easy to reverse engineer. This is not in any way a fault in the design of .NET; it is simply a reality of modern, intermediate-compiled

132 views • 10 slides
Explaining the Boom-Bust Cycle in the U.S. Housing Market: A Reverse-Engineering Approach

Explaining the Boom-Bust Cycle in the U.S. Housing Market: A Reverse-Engineering Approach

Overview Evidence Model Calibration Quantitative Results Reverse Engineered Shocks Conclusion Extras Explaining the Boom-Bust Cycle in the U.S. Housing Market: A Reverse-Engineering Approach Paolo Gelain Kevin J. Lansing Gisle J.

717 views • 50 slides
Reverse engineering using computational algebra Elena Dimitrova School of Mathematical and

Reverse engineering using computational algebra Elena Dimitrova School of Mathematical and

Reverse engineering using computational algebra Elena Dimitrova School of Mathematical and Statistical Sciences Clemson University http://edimit.people.clemson.edu/ Algebraic Biology E. Dimitrova (Clemson) Reverse engineering using

864 views • 57 slides
Computer and Information Security Fall 2019 Reverse Engineering Tyler Bletsch Duke University

Computer and Information Security Fall 2019 Reverse Engineering Tyler Bletsch Duke University

ECE590 Computer and Information Security Fall 2019 Reverse Engineering Tyler Bletsch Duke University With additional content by Jiaming Li, NC State University, 2015 What is software reverse engineering? Determine and possibly change

629 views • 35 slides
Noncommutative Potential Theory 1 Fabio Cipriani Dipartimento di Matematica Politecnico di

Noncommutative Potential Theory 1 Fabio Cipriani Dipartimento di Matematica Politecnico di

Overview Classical Potential Theory Dirichlet forms on von Neumann algebras KMS-symmetry Quantum Spins Compact Quantum Groups Lvy Process HAP Noncommutative Potential Theory 1 Fabio Cipriani Dipartimento di Matematica Politecnico di

625 views • 29 slides
Cosmic Ray Modulation Observed by the Princess Sirindhorn Neutron Monitor at High Rigidity Cutoff

Cosmic Ray Modulation Observed by the Princess Sirindhorn Neutron Monitor at High Rigidity Cutoff

Introduction Solar Modulation at High Rigidity Cutoff Summary Cosmic Ray Modulation Observed by the Princess Sirindhorn Neutron Monitor at High Rigidity Cutoff P.-S. Mangeard, 1 J. Clem, 1 P. Evenson, 1 R. Pyle, 2 W. Mitthumsiri , 3 D. Ruffolo,

440 views • 23 slides
Novice developers Distributed software development Delayed 12 days (Thongtanunam et al, SANER

Novice developers Distributed software development Delayed 12 days (Thongtanunam et al, SANER

56 th COW : Code Review and Continuous Inspection/Integration T OWARDS A UTOMATED S UPPORTS FOR C ODE R EVIEWS USING R EVIEWER R ECOMMENDATION AND R EVIEW Q UALITY M ODELLING Mohammad Masudur Rahman, Chanchal K. Roy, Raula G. Kula, Jason Collins,

1.03k views • 53 slides
Financial Markets Law Committee (FMLC) Securities Markets Scoping Forum Date: Wednesday 11

Financial Markets Law Committee (FMLC) Securities Markets Scoping Forum Date: Wednesday 11

Financial Markets Law Committee (FMLC) Securities Markets Scoping Forum Date: Wednesday 11 September 2019 Time: 9.00am to 10.30am Location: Bank of England, Threadneedle Street, London, EC2R 8AH In Attendance: Sanjev Warna-kula-suriya

514 views • 15 slides
Graded quaternion-symbol equivalence Przemysaw Koprowski ALaNT 5 1/29 Fundamental question

Graded quaternion-symbol equivalence Przemysaw Koprowski ALaNT 5 1/29 Fundamental question

Graded quaternion-symbol equivalence Przemysaw Koprowski ALaNT 5 1/29 Fundamental question Fundamental question To what extend the arithmetic of a field determines possible geometries over it? 2/29 Example Take V = K 3 equipped with a

727 views • 34 slides
We Welco lcome me to to Ou Our r Par Parish ish Fam Family! ily! Bi Bien enven

We Welco lcome me to to Ou Our r Par Parish ish Fam Family! ily! Bi Bien enven

We Welco lcome me to to Ou Our r Par Parish ish Fam Family! ily! Bi Bien enven venidos idos a Nu a Nues estra tra Fam Famil ilia ia Pa Parr rroquial! oquial! We would like to extend a very warm welcome to our new

381 views • 26 slides
Noncommutative Geometry and Potential Theory on the Sierpinski Gasket Fabio Cipriani

Noncommutative Geometry and Potential Theory on the Sierpinski Gasket Fabio Cipriani

Overview Sierpinski gasket Dirichlet form Differential calculus Fredholm modules, Conformal Geometry Dirac operators, Spectral triples Potential Theory Noncommutative Geometry and Potential Theory on the Sierpinski Gasket Fabio Cipriani

1.08k views • 34 slides
Haagerup property for arbitrary von Neumann algebras Martijn Caspers (WWU Mnster) joint with

Haagerup property for arbitrary von Neumann algebras Martijn Caspers (WWU Mnster) joint with

Haagerup property for arbitrary von Neumann algebras Martijn Caspers (WWU Mnster) joint with Adam Skalski (IMPAN/Warsaw University) related to work by R. Okayasu, R. Tomatsu June 13, 2014 Equivalent notions of the Haagerup property

834 views • 34 slides

More recommend