Mark some techs that are related to binary code comparisons. Sadly I haven’t found a perfect tool because most of them only focus on certain features and lacks a holistic one.
Binary Differentiation 0
IDA Flirt
IDA F.L.I.R.T. Technology: In-Depth
Actually this tech is for Lib functions recognition only. It requires a .lib file to generate a .pat pattern file.
IDA FLIRT使用 - Bl0od - 博客园 (cnblogs.com)
Bindiff
This tool is a quite useful one but I requires a whole IDB file to do the comparison thing which is quite inconvenient.
Its algorithm is based on the function’s CFG so if IDA failed to generate a precise CFG(especially when an indirect jump occurs within the function), Bindiff will also fail to do the comparison.
The above site tells all the function matching techniques that Bindiff uses.
AI(traditional)
CN105868108A.pdf (storage.googleapis.com)
Some weird AI-based binary code similarity recognition method. It even has a patent. Cool. But I think it’s bluffing.
OpenAI
I love OpenAI.
I think ChatGPT3.5 is quite intelligent in understanding small function code. And OpenAI also provides developers with an feature called “Embedding” to do the text comparisons.
I will talk about this topic in another blog.
Code Understanding
Denigma - AI that reads and explains code in understandable english
Other’s unfinished work
binsign(关于二进制代码定位和特征搜索的项目) - Hexo-theme-snail (x-16xb.github.io)
This individual wants to create a perfect tool in terms of binary differentiation but did no further research.
- 本文作者: Taardis
- 本文链接: https://taardisaa.github.io/2023/04/23/Binary-Comparison-0/
- 版权声明: 本博客所有文章除特别声明外,均采用 Apache License 2.0 许可协议。转载请注明出处!