VulMatch: Binary-Level Vulnerability Detection Through Signature

  1. Home
  2. search page
  3. paper

VulMatch: Binary-Level Vulnerability Detection Through Signature

연구 분야: Strategies

논문 키워드: #vulnerabilities #cybersecurity #tools #reuse #firmware

학회: International Conference on Network and System Security

초록

Vulnerabilities often recur in software due to code reuse, particularly with widely used third-party libraries. Detecting such vulnerabilities, including 1-day and N-day types, is crucial for cybersecurity. Current methods struggle with poor performance as they focus on detecting patch existence rather than actual vulnerabilities and derive signatures directly from binary code. We propose VulMatch, which generates precise vulnerability signatures by analyzing both source and binary code. Our method outperforms existing tools like Asm2vec and Palmtree and provides better explainability in detection. Tested on over 1,000 vulnerabilities across seven open-source projects and commercial firmware, VulMatch demonstrates superior fine-grained detection capabilities.

Author Profile
Zian Liu

Swinburne University of Technology Melbourne Australia

Australia
Author Profile
Shigang Liu

Swinburne University of Technology Melbourne Australia

Australia
Author Profile
Lei Pan

Data 61 CSIRO Canberra Australia

Australia

📄 논문 정보

발행 연도 2025년
인용수 0
출판 국가 Australia
사이트 Springer
좋아요 수 0

연관 논문 목록 (301건)

Major Vulnerabilities of Web Application in Real World Scenarios and Their Prevention
저자: Basheer Riskhan , Md Amin Ullah Sheikh , Md Shakil Hossain , Khalid Hussain , Zurinahni Zainol , N Zaman Jhanjh
키워드: #vulnerabilities #security #attackers #forgery #misconfigurations
파트: Strategies | 연도: 2025
Precision-guided Smart Contract Fuzzing by static Analyses
저자: Tianyi Zhang , Qi Xia , Jianbin Gao , Hu Xia
키워드: #vulnerabilities #fuzzer #smartfuzz #fuzz #fuzzing
파트: Strategies | 연도: 2025
SSRFSeek: An LLM-based Static Analysis Framework for Detecting SSRF Vulnerabilities in PHP Applications
저자: Yuan Zhou , Enze Wang , Shuoyoucheng Ma
키워드: #vulnerabilities #web #forgery #taint #shortcomings
파트: Strategies | 연도: 2025
Anomaly Detection Services for Blockchain Smart Contracts with Unknown Vulnerabilities
저자: Chunhong Liu , Zihang Sang , Li Duan , Jingxiong Wang , Wei Ni , Wei Wang
키워드: #vulnerabilities #security #economic #anomalies #anomalous
파트: Strategies | 연도: 2025
CSAFuzzer: Fuzzing smart contracts combining with static analysis
저자: Jiahui Yang , Xiangfu Zhao , Hanfeng Zhang , Long He , Shiji Wang , Naixiang Gou
키워드: #vulnerabilities #bugs #hackers #blockchain #csafuzzer
파트: Strategies | 연도: 2025
Cyber defense in OCPP for EV charging security risks
저자: Safa Hamdare , David J. Brown , Devki Nandan Jha , Mohammad Aljaidi , Yue Cao , Sushil Kumar , Rupak Kharel , Manish Jugran , Omprakash Kaiwartya
키워드: #vulnerabilities #cyber #electric #mitigation #authentication
파트: Strategies | 연도: 2025
Poster Abstract: Time Attacks using Kernel Vulnerabilities
저자: Muhammad Abdullah Soomro , Adeel Nasrullah , Fatima Muhammad Anwar
키워드: #vulnerabilities #randomized #mitigation #timekeeping #disrupting
파트: Strategies | 연도: 2025
Designing and Optimizing Alignment Datasets for IoT Security: A Synergistic Approach with Static Analysis Insights
저자: Ahmad Al-Zuraiqi , Des Greer
키워드: #optimize #vulnerabilities #security #hard #mitigation
파트: Strategies | 연도: 2025
Identifying factors influencing the duration of zero-day vulnerabilities
저자: Yaman Roumani
키워드: #vulnerabilities #cyber #threats #weaknesses #damage
파트: Strategies | 연도: 2025
Vulnerability Repair via Concolic Execution and Code Mutations
저자: Abhik Roychoudhury , Ridwan Salihin Shariffdeen , Christopher Steven Timperley , Yannic Noller , Claire Le Goues
키워드: #vulnerabilities #automated #mutations #crashrepair #repairs
파트: Strategies | 연도: 2025