Vulnerability Detection Through Binary Code Analysis

Vulnerability detection plays a crucial role in the software security community. Vulnerabilities can be categorized into two types: 1-day or N-day vulnerability, and 0-day vulnerability. The first category includes vulnerabilities that are already publicly known. One way to identify these vulnerabilities is to search for similar patterns or code logic, as program code often reuses existing vulnerable functions. The second category refers to the vulnerabilities that have not been previously discovered, and thus contain new patterns and logic. Researchers can employ a range of binary code analysis techniques to detect both two types of vulnerabilities. I proposed novel methodologies to find the vulnerabilities in binary code. This can potentially help the industry become a more secure place.