Rust in Translation: Unwinding the Layers of Rust Binary Reverse Engineering
Rust in Translation: Unwinding the Layers of Rust Binary Reverse Engineering
Supervisor(s): | Fabian Franzen |
Status: | finished |
Topic: | Others |
Author: | Boris-Chengbiao Zhou |
Submission: | 2024-12-02 |
Type of Thesis: | Masterthesis |
DescriptionThe Rust programming language is quickly establishing itself as a serious alternative for projects which traditionally were reserved for C/C++. This reaches from hobbyists up to the largest software corporations in the world. Unsurprisingly this attention has also caught the eye of bad actors. Malware written in Rust is on the rise and until now the tools for analyzing Rust binaries are missing. To help fill that gap we propose RustSigGen, a tool which automatically generates tailor-made function signatures for a given target binary. We show that it can recognize large parts of stripped Rust binaries. Both from open-source projects as well as real malware. |