TUM Logo

Rust in Translation: Unwinding the Layers of Rust Binary Reverse Engineering

Rust in Translation: Unwinding the Layers of Rust Binary Reverse Engineering

Supervisor(s): Fabian Franzen
Status: finished
Topic: Others
Author: Boris-Chengbiao Zhou
Submission: 2024-12-02
Type of Thesis: Masterthesis

Description

The Rust programming language is quickly establishing itself as a serious alternative for projects 

which traditionally were reserved for C/C++. This reaches from hobbyists up to the largest software 

corporations in the world. Unsurprisingly this attention has also caught the eye of bad actors. Malware 

written in Rust is on the rise and until now the tools for analyzing Rust binaries are missing. To help fill 

that gap we propose RustSigGen, a tool which automatically generates tailor-made function signatures 

for a given target binary. We show that it can recognize large parts of stripped Rust binaries. Both from

open-source projects as well as real malware.