{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,11]],"date-time":"2024-09-11T18:26:25Z","timestamp":1726079185647},"publisher-location":"Cham","reference-count":19,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030429201"},{"type":"electronic","value":"9783030429218"}],"license":[{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020]]},"DOI":"10.1007\/978-3-030-42921-8_13","type":"book-chapter","created":{"date-parts":[[2020,4,3]],"date-time":"2020-04-03T15:05:45Z","timestamp":1585926345000},"page":"225-245","update-policy":"http:\/\/dx.doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["SymSem: Symbolic Execution with Time Stamps for Deobfuscation"],"prefix":"10.1007","author":[{"given":"Huayi","family":"Li","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yuanyuan","family":"Zhan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Wang","family":"Jianqiang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Dawu","family":"Gu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2020,3,13]]},"reference":[{"key":"13_CR1","unstructured":"Code virtualizer. \nhttps:\/\/www.oreans.com\/codevirtualizer.php\n\n. Accessed 4 July 2019"},{"key":"13_CR2","unstructured":"Manticore. \nhttps:\/\/github.com\/trailofbits\/manticore\n\n. Accessed 4 July 2019"},{"key":"13_CR3","unstructured":"Themida. \nhttps:\/\/www.oreans.com\/themida.php\n\n. Accessed 4 July 2019"},{"key":"13_CR4","unstructured":"Vmprotct. \nhttps:\/\/vmpsoft.com\/\n\n. Accessed 4 July 2019"},{"key":"13_CR5","doi-asserted-by":"publisher","unstructured":"Banescu, S., Collberg, C., Ganesh, V., Newsham, Z., Pretschner, A.: Code obfuscation against symbolic execution attacks. In: Proceedings of the 32nd Annual Conference on Computer Security Applications, ACSAC 2016, pp. 189\u2013200. ACM, New York (2016). \nhttps:\/\/doi.org\/10.1145\/2991079.2991114","DOI":"10.1145\/2991079.2991114"},{"key":"13_CR6","doi-asserted-by":"publisher","unstructured":"Bao, T., Wang, R., Shoshitaishvili, Y., Brumley, D.: Your exploit is mine: automatic shellcode transplant for remote exploits. In: 2017 IEEE Symposium on Security and Privacy (SP), pp. 824\u2013839, May 2017. \nhttps:\/\/doi.org\/10.1109\/SP.2017.67","DOI":"10.1109\/SP.2017.67"},{"key":"13_CR7","doi-asserted-by":"publisher","unstructured":"Bardin, S., David, R., Marion, J.Y.: Backward-bounded DSE: targeting infeasibility questions on obfuscated codes, pp. 633\u2013651, May 2017. \nhttps:\/\/doi.org\/10.1109\/SP.2017.36","DOI":"10.1109\/SP.2017.36"},{"key":"13_CR8","doi-asserted-by":"crossref","unstructured":"Bauman, E., Lin, Z., Hamlen, K.: Superset disassembly: statically rewriting x86 binaries without heuristics. In: Proceedings of the 25th Annual Network and Distributed System Security Symposium, NDSS 2018, San Diego, CA, February 2018","DOI":"10.14722\/ndss.2018.23300"},{"key":"13_CR9","doi-asserted-by":"publisher","unstructured":"Brumley, D., Poosankam, P., Song, D., Zheng, J.: Automatic patch-based exploit generation is possible: techniques and implications. In: 2008 IEEE Symposium on Security and Privacy (SP 2008), pp. 143\u2013157, May 2008. \nhttps:\/\/doi.org\/10.1109\/SP.2008.17","DOI":"10.1109\/SP.2008.17"},{"key":"13_CR10","doi-asserted-by":"crossref","unstructured":"Coogan, K., Lu, G., Debray, S.K.: Deobfuscation of virtualization-obfuscated software: a semantics-based approach. In: ACM Conference on Computer & Communications Security (2011)","DOI":"10.1145\/2046707.2046739"},{"key":"13_CR11","doi-asserted-by":"crossref","unstructured":"Kalysch, A., G\u00f6tzfried, J., M\u00fcller, T.: VMAttack: deobfuscating virtualization-based packed binaries. In: The 12th International Conference (2017)","DOI":"10.1145\/3098954.3098995"},{"key":"13_CR12","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"313","DOI":"10.1007\/978-3-319-89500-0_28","volume-title":"Information and Communications Security","author":"M Liang","year":"2018","unstructured":"Liang, M., Li, Z., Zeng, Q., Fang, Z.: Deobfuscation of virtualization-obfuscated code through symbolic execution and compilation optimization. In: Qing, S., Mitchell, C., Chen, L., Liu, D. (eds.) ICICS 2017. LNCS, vol. 10631, pp. 313\u2013324. Springer, Cham (2018). \nhttps:\/\/doi.org\/10.1007\/978-3-319-89500-0_28"},{"key":"13_CR13","doi-asserted-by":"publisher","unstructured":"Luk, C.K., et al.: Pin: building customized program analysis tools with dynamic instrumentation. In: Proceedings of the 2005 ACM SIGPLAN Conference on Programming Language Design and Implementation, PLDI 2005, pp. 190\u2013200. ACM, New York (2005). \nhttps:\/\/doi.org\/10.1145\/1065010.1065034","DOI":"10.1145\/1065010.1065034"},{"key":"13_CR14","unstructured":"Ming, J., Xu, D., Jiang, Y., Wu, D.: BinSim: trace-based semantic binary diffing via system call sliced segment equivalence checking. In: 26th USENIX Security Symposium (USENIX Security 2017), pp. 253\u2013270. USENIX Association, Vancouver (2017). \nhttps:\/\/www.usenix.org\/conference\/usenixsecurity17\/technical-sessions\/presentation\/ming"},{"key":"13_CR15","unstructured":"Rolles, R.: Unpacking virtualization obfuscators. In: Proceedings of the 3rd USENIX Conference on Offensive Technologies, January 2009"},{"key":"13_CR16","doi-asserted-by":"crossref","unstructured":"Sharif, M., Lanzi, A., Giffin, J., Lee, W.: Automatic reverse engineering of malware emulators. In: IEEE Symposium on Security & Privacy (2009)","DOI":"10.1109\/SP.2009.27"},{"key":"13_CR17","doi-asserted-by":"crossref","unstructured":"Wang, R., et al.: Ramblr: making reassembly great again. In: Proceedings of the Network and Distributed System Security Symposium (2017)","DOI":"10.14722\/ndss.2017.23225"},{"key":"13_CR18","doi-asserted-by":"publisher","unstructured":"Xu, D., Ming, J., Fu, Y., Wu, D.: VMHunt: a verifiable approach to partially-virtualized binary code simplification. In: Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, CCS 2018, pp. 442\u2013458. ACM, New York (2018). \nhttps:\/\/doi.org\/10.1145\/3243734.3243827","DOI":"10.1145\/3243734.3243827"},{"key":"13_CR19","doi-asserted-by":"publisher","unstructured":"Yadegari, B., Debray, S.: Symbolic execution of obfuscated code. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, CCS 2015, pp. 732\u2013744. ACM, New York (2015). \nhttps:\/\/doi.org\/10.1145\/2810103.2813663","DOI":"10.1145\/2810103.2813663"}],"container-title":["Lecture Notes in Computer Science","Information Security and Cryptology"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-42921-8_13","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,4,3]],"date-time":"2020-04-03T15:13:00Z","timestamp":1585926780000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-42921-8_13"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020]]},"ISBN":["9783030429201","9783030429218"],"references-count":19,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-42921-8_13","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2020]]},"assertion":[{"value":"13 March 2020","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"Inscrypt","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Information Security and Cryptology","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Nanjing","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"China","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2019","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"6 December 2019","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"8 December 2019","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"15","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"cisc2019","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/asclab.nuaa.edu.cn\/inscrypt2019\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}