摘要
针对软件逆向分析中遇到的软件网络通信过程复杂,分析耗时的问题,提出了软件网络通信过程逆向分析及可视化方法。利用动态二进制平台DynamoRIO记录软件网络通信过程中执行的API函数信息,对记录结果进行函数关联性分析,结合图形化工具软件aiSee,将软件网络通信过程以图形化形式展现。实验结果表明,该方法能够在不影响程序的情况下通过程序的一次运行即正确解析并可视化其网络通信过程。
In view of software network communication complex,time consuming in software reverse analysis,the software network communication reverse analysis and the visualization method are proposed.Recording API function information in software network communication process using dynamic binary platform DynamoRIO,function correlation of record results are analyzed,combined with graphical tool software aiSee,visualize software network communication process in a graphic form.After experimental verification,this method can correctly parse and visualize software network communication process without affecting the program just through program executing once.
出处
《计算机工程与设计》
CSCD
北大核心
2012年第9期3593-3597,共5页
Computer Engineering and Design
