Control flow integrity checking plugin

15 views
Skip to first unread message

Vitaly Chipounov

unread,
Feb 14, 2021, 7:27:08 AMFeb 14
to s2e...@googlegroups.com
Dear all,

S2E has now a control flow integrity checking plugin. You can use it to
detect malicious Microsoft Office documents. The tutorial is available
here [1].

Here is a list of all other new features:
- Added a command to s2e-env to automatically generate S2E plugin
boilerplate. The tutorial is here [2].
- UserSpaceTracer plugin supports per-thread execution tracing.
- Added the Tickler plugin and the corresponding Windows guest tool in
order to automatically click on dialog boxes while testing Microsoft
Office and other apps.
- Added the Screenshot plugin to record screenshots of the guest.

Upgrade instructions:

$ cd /path/to/s2e-env
$ git pull --rebase origin master
$ . venv/bin/activate
$ pip install -e .
$ cd $S2EENV/source
$ repo sync
$ cd $S2EENV
$ rm -r $S2EENV/build/*
$s2ebuild

Enjoy!
Vitaly

[1] http://s2e.systems/docs/Tutorials/CFI/index.html
[2] http://s2e.systems/docs/Howtos/WritingPlugins.html
Reply all
Reply to author
Forward
0 new messages