{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,26]],"date-time":"2025-03-26T15:20:53Z","timestamp":1743002453259,"version":"3.40.3"},"publisher-location":"Cham","reference-count":20,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319696584"},{"type":"electronic","value":"9783319696591"}],"license":[{"start":{"date-parts":[[2017,1,1]],"date-time":"2017-01-01T00:00:00Z","timestamp":1483228800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2017]]},"DOI":"10.1007\/978-3-319-69659-1_21","type":"book-chapter","created":{"date-parts":[[2017,10,19]],"date-time":"2017-10-19T08:44:47Z","timestamp":1508402687000},"page":"387-404","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Nightingale: Translating Embedded VM Code in x86 Binary Executables"],"prefix":"10.1007","author":[{"given":"Xie","family":"Haijiang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zhang","family":"Yuanyuan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Li","family":"Juanru","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Gu","family":"Dawu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,10,20]]},"reference":[{"issue":"2","key":"21_CR1","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/2160158.2160159","volume":"59","author":"B Barak","year":"2012","unstructured":"Barak, B., Goldreich, O., Impagliazzo, R., Rudich, S., Sahai, A., Vadhan, S., Yang, K.: On the (im)possibility of obfuscating programs. J. ACM 59(2), 1\u20136 (2012)","journal-title":"J. ACM"},{"key":"21_CR2","unstructured":"CEA IT Security. Miasm: Reverse engineering framework in Python. https:\/\/github.com\/cea-sec\/miasm"},{"key":"21_CR3","doi-asserted-by":"crossref","unstructured":"Coogan, K., Lu, G., Debray, S.: Deobfuscation of virtualization-obfuscated software: a semantics-based approach. In: Proceedings of the 18th ACM Conference on Computer and Communications Security (CCS) (2011)","DOI":"10.1145\/2046707.2046739"},{"key":"21_CR4","unstructured":"COSEINC. COSEINC OptiCode: Deobfuscate Machine Code. http:\/\/opticode.coseinc.com\/"},{"key":"21_CR5","unstructured":"Gabriel, F.: Deobfuscation: recovering an OLLVM-protected program. http:\/\/blog.quarkslab.com\/deobfuscation-recovering-an-ollvm-protected-program.html"},{"issue":"3","key":"21_CR6","doi-asserted-by":"publisher","first-page":"261","DOI":"10.1007\/s11416-009-0126-4","volume":"6","author":"Y Guillot","year":"2010","unstructured":"Guillot, Y., Gazet, A.: Automatic binary deobfuscation. J. Comput. Virol. 6(3), 261\u2013276 (2010)","journal-title":"J. Comput. Virol."},{"key":"21_CR7","doi-asserted-by":"crossref","unstructured":"Junod, P., Rinaldini, J., Wehrli, J., Michielin, J.: Obfuscator-LLVM - software protection for the masses. In: Proceedings of the IEEE\/ACM 1st International Workshop on Software Protection (SPRO) (2015)","DOI":"10.1109\/SPRO.2015.10"},{"key":"21_CR8","unstructured":"Luk, C.K., Cohn, R., Muth, R., Patil, H., Klauser, A., Lowney, G., Wallace, S., Reddi, V.J., Hazelwood, K.: Pin: building customized program analysis tools with dynamic instrumentation (2005)"},{"key":"21_CR9","unstructured":"Oreans Inc. Oreans Technology: Software Security Defined. http:\/\/www.oreans.com\/"},{"key":"21_CR10","unstructured":"Rolles, R.: Unpacking virtualization obfuscators. In: Proceedings of the 3rd USENIX Workshop on Offensive Technologies (WOOT) (2009)"},{"key":"21_CR11","unstructured":"Rolles, R.: The case for semantics-based methods in reverse engineering. In: RECON (2012)"},{"key":"21_CR12","unstructured":"Safengine.com. Safengine Protector. http:\/\/safengine.com\/"},{"key":"21_CR13","doi-asserted-by":"crossref","unstructured":"Sharif, M., Lanzi, A., Giffin, J., Lee, W.: Automatic reverse engineering of malware emulators. In: Proceedings of the 30th IEEE Symposium on Security and Privacy (SP). IEEE (2009)","DOI":"10.1109\/SP.2009.27"},{"key":"21_CR14","volume-title":"Virtual Machines: Versatile Platforms for Systems and Processes","author":"J Smith","year":"2005","unstructured":"Smith, J., Nair, R.: Virtual Machines: Versatile Platforms for Systems and Processes. Elsevier, Amsterdam (2005)"},{"key":"21_CR15","unstructured":"Souchet, A.: Obfuscation, breaking kryptonite\u2019s: a static analysis approach relying on symbolic execution. http:\/\/doar-e.github.io\/blog\/2013\/09\/16\/breaking-kryptonites-obfuscation-with-symbolic-execution\/"},{"key":"21_CR16","unstructured":"StrongBit Technology. EXECryptor - bulletproof software protection. http:\/\/www.strongbit.com\/execryptor.asp"},{"key":"21_CR17","unstructured":"VMProtect Inc. VMProtect Software Protection. http:\/\/vmpsoft.com\/"},{"key":"21_CR18","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"164","DOI":"10.1007\/978-3-642-41284-4_9","volume-title":"Research in Attacks, Intrusions, and Defenses","author":"C Wressnegger","year":"2013","unstructured":"Wressnegger, C., Boldewin, F., Rieck, K.: Deobfuscating embedded malware using probable-plaintext attacks. In: Stolfo, S.J., Stavrou, A., Wright, C.V. (eds.) RAID 2013. LNCS, vol. 8145, pp. 164\u2013183. Springer, Heidelberg (2013). doi:10.1007\/978-3-642-41284-4_9"},{"key":"21_CR19","doi-asserted-by":"crossref","unstructured":"Yadegari, B., Debray, S.: Symbolic execution of obfuscated code. In: Proceedings of the 22nd ACM Conference on Computer and Communications Security (CCS) (2015)","DOI":"10.1145\/2810103.2813663"},{"key":"21_CR20","doi-asserted-by":"crossref","unstructured":"Yadegari, B., Johannesmeyer, B., Whitely, B., Debray, S.: A generic approach to automatic deobfuscation of executable code. In: Proceedings of the 36th IEEE Symposium on Security and Privacy (SP) (2015)","DOI":"10.1109\/SP.2015.47"}],"container-title":["Lecture Notes in Computer Science","Information Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-69659-1_21","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,3,12]],"date-time":"2024-03-12T18:01:50Z","timestamp":1710266510000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-319-69659-1_21"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017]]},"ISBN":["9783319696584","9783319696591"],"references-count":20,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-69659-1_21","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2017]]},"assertion":[{"value":"20 October 2017","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ISC","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Information Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Ho Chi Minh City","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Vietnam","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2017","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"22 November 2017","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"24 November 2017","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"isw2017","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/isc2017.vgu.edu.vn\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}