An Introduction to the Binary Analysis Tool
-
Upload
shane-coughlan -
Category
Software
-
view
267 -
download
4
Transcript of An Introduction to the Binary Analysis Tool
What is this?
The Binary Analysis Tool is a modular frameworkfor auditing the contents of compiled software.
How does it work?
It reads binary code and automatically compares itto source code, complementing manual analysis
How good is it?
● It reads binary code for multiple architectures
● It detects whole programs
● It detects fragments of programs
Current features
● Automated extraction of the version and configuration of busybox
● Extraction of file systems
● Automated checking for the Linux kernel
● Brute force scanning of firmware
● Feeding known information through a knowledgebase
Is this reverse engineering?
No. All of the features offered by this tool arebased on symbol and string table comparisons
See it in action
In the real world this can scan firmware to identifyFOSS components and configurations
What's the catch?
Naturally the tool does not replace a dedicatedcompliance engineer and it requires some degreeof integration into existing workflows to be useful.
However, it has the potential to reduce costs andincrease productivity for FOSS due diligence.
Be part of the project
This is Free Software that everyone can use,study, share and improve
Get involved at www.binaryanalysis.org
Thanks for watching
Get more information
www.binaryanalysis.org
Copyright (c) 2010 LoCo and Opendawn, all rights reserved