Diffing C Sources to Binaries presented at hacktivity2018 2018

by Joxean Koret,

URL : https://www.youtube.com/watch?v=_YU9hirt4PQ&t=0s&list=PLbrZ_OVEaffK2bi8mmSHAFiZ3YXUSktSO&index=3

Summary : Often, when doing reverse engineering projects, one needs to import symbols from Open Source or "leaked" code bases into IDA databases. What everybody does is to compile to binary, diff and import the matches. However, it's often problematic due to compiler optimizations, flags used, etc... It can be even impossible because old source codes do not compile with newer compilers or, simply, because there is no full source, just partial source code. During the talk, I will discuss algorithms for importing symbols *directly* from C source codes into IDA databases and release a tool (that will run, most likely, on top of Diaphora) for doing so.