Description: FOOCODECHU FOR SOFTWARE ANALYSIS, MALWARE DETECTION, & VULN RESEARCH
This talk explains the free web services provided by FooCodeChu - what they can be used for and how they work. Demos of three services will be shown. The first offering, Simseer, is a web service that performs software binary-level similarity detection and visualization of program relationships. This has applications in detecting software theft and plagiarism. It can also be applied to malware variant detection. The service performs automated unpacking using a 32-bit x86 application-level emulator written from scratch. The next service, Bugwise, can detect software bugs and vulnerabilities in executable binaries. It works using decompilation and data flow analysis. Finally, Clonewise is an open source service to identify code reuse in Linux using source-level analysis. Users of the service submit a tarball of their source tree and Clonewise reports if the code is shared with any packages in Debian and Ubuntu Linux. This system is planned to be integrated into the Debian Linux infrastructure.
SILVIO CESARE BIO
Silvio Cesare is a PhD student at Deakin University. His research interests include malware detection and automated vulnerability discovery using static analysis of executable binaries. He has previously spoken at conferences including Blackhat, Cansecwest, Ruxcon, and academic outlets. He is an author of the book Software Similarity and Classification, published by Springer and has worked in industry within Australia, France and the United States. This work includes time as the scanner architect of the vulnerability management company, Qualys.
For More Information please visit : - http://2012.ruxcon.org.au/speakers
Tags: securitytube , hacking , hackers , information security , convention , computer security , ruxcon-2012 ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.