An Open-Source Machine-Code Decompiler presented at ReconMontreal2018 2018

by Peter Matula, Marek Milkovič,

Summary : We present our machine-code decompiler called RetDec (Retargetable Decompiler). We have been developing RetDec in Avast for several years, and open-sourced it a few months ago under the MIT license. Its primary goal is, of course, decompilation of (malicious) binary applications, but its components can be also used for other tasks such as initial assessment of samples, pattern matching, disassembly, extraction of control flow, or translation into a well-known intermediate representation. We will demonstrate both decompilation and other reversing applications of our tools on several real-world examples.