Thesis Details

Vylepšení rekonstrukce datových typů při zpětném překladu

Bachelor's Thesis Student: Venger Adam Academic Year: 2018/2019 Supervisor: Kolář Dušan, doc. Dr. Ing.
English title
Data Type Reconstruction Improvements in RetDec Decompiler
Language
Czech
Abstract

New malware is being continuosly developed. For its effective analysis and fight against it, tools such as decompilers are needed. Decompilation, however, is difficult problem to solve. For the improvement of its results, all of the information contained in binary files needs to be used. Some programming languages require encoding of some symbols in order to be compiled correctly. For example, when compiling functions, the parameter data types and the calling convention are encoded to the function name. This process is called mangling. Thesis deals with reverse process called demangling and its utilization for improvement of the RetDec decompiler. Created library allows demangling of symbols created by popular C++ and Delphi compilers. It combines custom solution with an existing one in the form of LLVM project demangler. Existing demangler library in RetDec was replaced with the new one, results of which are much more reliable. The reconstruction of data types was expanded to use the information obtained from encoded symbols, which resulted in more accurate decompilation.

Keywords

reverse engineering, RetDec, demangling, demangler, mangling, name decoration, data type reconstruction

Department
Degree Programme
Information Technology
Files
Status
defended, grade B
Date
11 June 2019
Reviewer
Committee
Kolář Dušan, doc. Dr. Ing. (DIFS FIT BUT), předseda
Bařina David, Ing., Ph.D. (DCGM FIT BUT), člen
Hrubý Martin, Ing., Ph.D. (DITS FIT BUT), člen
Kořenek Jan, doc. Ing., Ph.D. (DCSY FIT BUT), člen
Zendulka Jaroslav, doc. Ing., CSc. (DIFS FIT BUT), člen
Citation
VENGER, Adam. Vylepšení rekonstrukce datových typů při zpětném překladu. Brno, 2019. Bachelor's Thesis. Brno University of Technology, Faculty of Information Technology. 2019-06-11. Supervised by Kolář Dušan. Available from: https://www.fit.vut.cz/study/thesis/22060/
BibTeX
@bachelorsthesis{FITBT22060,
    author = "Adam Venger",
    type = "Bachelor's thesis",
    title = "Vylep\v{s}en\'{i} rekonstrukce datov\'{y}ch typ\r{u} p\v{r}i zp\v{e}tn\'{e}m p\v{r}ekladu",
    school = "Brno University of Technology, Faculty of Information Technology",
    year = 2019,
    location = "Brno, CZ",
    language = "czech",
    url = "https://www.fit.vut.cz/study/thesis/22060/"
}
Back to top