{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,22]],"date-time":"2025-08-22T05:00:56Z","timestamp":1755838856642,"version":"3.37.3"},"reference-count":39,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"name":"Beijing National Research Center for Information Science and Technology (BNRist), through the Network and Software Security Research Program","award":["BNR2019TD01004"],"award-info":[{"award-number":["BNR2019TD01004"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2019]]},"DOI":"10.1109\/access.2019.2937585","type":"journal-article","created":{"date-parts":[[2019,8,26]],"date-time":"2019-08-26T15:25:05Z","timestamp":1566833105000},"page":"120152-120163","source":"Crossref","is-referenced-by-count":5,"title":["ARG: Automatic ROP Chains Generation"],"prefix":"10.1109","volume":"7","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-7930-2911","authenticated-orcid":false,"given":"Yuan","family":"Wei","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Senlin","family":"Luo","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jianwei","family":"Zhuge","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jing","family":"Gao","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ennan","family":"Zheng","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Bo","family":"Li","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Limin","family":"Pan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1088\/1742-6596\/978\/1\/012116"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2016.23368"},{"key":"ref33","article-title":"Unicorn: Next generation CPU emulator framework","author":"nguyen","year":"2015","journal-title":"Proc BlacNHat Conf"},{"key":"ref32","article-title":"BARF: A multiplatform open source binary analysis and reverse engineering framework","author":"heitman","year":"2014","journal-title":"Proc 20th Congreso Argentino de Ciencias de la Computaci&#x00F3;n"},{"key":"ref31","article-title":"Introduction to the zope object database","author":"fulton","year":"2000","journal-title":"Proc 8th Int Python Conf"},{"article-title":"Ropgadget&#x2013;gadgets finder and auto-roper","year":"2011","author":"salwan","key":"ref30"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1145\/2408776.2408795"},{"article-title":"PIN&#x2014;A dynamic binary instrumentation tool","year":"2018","author":"levi","key":"ref36"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/SecDev.2017.14"},{"key":"ref34","first-page":"368","article-title":"Miasm: Framework de reverse engineering","author":"desclaux","year":"2012","journal-title":"Proc Actes SSTIC"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/2133375.2133377"},{"key":"ref11","first-page":"25","article-title":"Q: Exploit hardening made easy","author":"schwartz","year":"2011","journal-title":"Proc Usenix Secur Symp"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1145\/1455770.1455776"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-54580-5_27"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/CANDAR.2015.109"},{"journal-title":"ARG Demo","year":"2019","key":"ref15"},{"journal-title":"Source Code","year":"2019","key":"ref16"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.15514\/ISPRAS-2016-28(6)-2"},{"journal-title":"Return-to-libc attack","year":"1997","key":"ref18"},{"journal-title":"Address Space Layout Randomization (ASLR)","year":"2001","key":"ref19"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-04283-1_14"},{"key":"ref4","article-title":"AEG: Automatic exploit generation","author":"avgerinos","year":"2011","journal-title":"Proc Symp Netw Distrib Syst Security"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.31"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/1315245.1315313"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2008.17"},{"key":"ref29","first-page":"46","article-title":"QEMU, a fast and portable dynamic translator","volume":"41","author":"bellard","year":"2005","journal-title":"Proc USENIX Annu Tech Conf FREENIX Track"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1145\/2560217.2560219"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2016.62"},{"key":"ref7","first-page":"177","article-title":"Automatic generation of data-oriented exploits","author":"hu","year":"2015","journal-title":"Proc USENIX Secur Symp Secur"},{"key":"ref2","article-title":"On the effectiveness of full-ASLR on 64-bit Linux","author":"gisbert","year":"2014","journal-title":"Proc In-Depth Secur Conf (DeepSec)"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2012.152"},{"article-title":"Methods and systems for defending against cyber-attacks","year":"2018","author":"friedman","key":"ref1"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1007\/s11633-011-0606-0"},{"key":"ref22","first-page":"1","article-title":"BinCAT: Purrfecting binary static analysis","author":"biondi","year":"2017","journal-title":"Proc Symp S&#x00E9;cur Technol Inf Commun"},{"journal-title":"AMOC","year":"2019","key":"ref21"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-78800-3_24"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-10575-8_11"},{"key":"ref26","first-page":"745","article-title":"QSYM: A practical concolic execution engine tailored for hybrid fuzzing","author":"yun","year":"2018","journal-title":"27th USENIX Security Symp"},{"key":"ref25","first-page":"3","article-title":"Dynamic taint analysis for automatic detection, analysis, and signaturegeneration of exploits on commodity software","volume":"5","author":"newsome","year":"2005","journal-title":"Proc NDSS"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6287639\/8600701\/08813052.pdf?arnumber=8813052","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,1,12]],"date-time":"2022-01-12T11:31:07Z","timestamp":1641987067000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/8813052\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019]]},"references-count":39,"URL":"https:\/\/doi.org\/10.1109\/access.2019.2937585","relation":{},"ISSN":["2169-3536"],"issn-type":[{"type":"electronic","value":"2169-3536"}],"subject":[],"published":{"date-parts":[[2019]]}}}