Skip to content
This repository has been archived by the owner on Mar 28, 2023. It is now read-only.

Reverse taint analysis module #14

Draft
wants to merge 2 commits into
base: master
Choose a base branch
from
Draft

Reverse taint analysis module #14

wants to merge 2 commits into from

Conversation

hmwildermuth
Copy link
Contributor

Adds an LLVM pass to do the 'reverse taint analysis' that allows tracing back along the call stack in order to detect what functions could have been the fault that crashed the program.

The pass has the same basic algorithm as #13 but acts on IR and uses symbol names instead of addresses. It has the benefit of knowing exactly how many parameters each function should have, something binary ninja struggles with.

Requires debug info in the IR.

Still has some todos before its ready:

  • JSON output
  • Integration into the pipeline so that gdb output can easily be passed to it.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant