{"id":"https://openalex.org/W2905937334","doi":"https://doi.org/10.1109/ccst.2018.8585654","title":"rev.ng: A Multi-Architecture Framework for Reverse Engineering and Vulnerability Discovery","display_name":"rev.ng: A Multi-Architecture Framework for Reverse Engineering and Vulnerability Discovery","publication_year":2018,"publication_date":"2018-10-01","ids":{"openalex":"https://openalex.org/W2905937334","doi":"https://doi.org/10.1109/ccst.2018.8585654","mag":"2905937334"},"language":"en","primary_location":{"id":"doi:10.1109/ccst.2018.8585654","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ccst.2018.8585654","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 International Carnahan Conference on Security Technology (ICCST)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5071447422","display_name":"Alessandro Di Federico","orcid":"https://orcid.org/0000-0001-8877-4315"},"institutions":[{"id":"https://openalex.org/I93860229","display_name":"Politecnico di Milano","ror":"https://ror.org/01nffqt88","country_code":"IT","type":"education","lineage":["https://openalex.org/I93860229"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Alessandro Di Federico","raw_affiliation_strings":["DEIB-Politecnico di Milano"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"DEIB-Politecnico di Milano","institution_ids":["https://openalex.org/I93860229"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5042085887","display_name":"Pietro Fezzardi","orcid":"https://orcid.org/0000-0003-0914-3844"},"institutions":[{"id":"https://openalex.org/I93860229","display_name":"Politecnico di Milano","ror":"https://ror.org/01nffqt88","country_code":"IT","type":"education","lineage":["https://openalex.org/I93860229"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Pietro Fezzardi","raw_affiliation_strings":["DEIB-Politecnico di Milano"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"DEIB-Politecnico di Milano","institution_ids":["https://openalex.org/I93860229"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5069191452","display_name":"Giovanni Agosta","orcid":"https://orcid.org/0000-0002-0255-4475"},"institutions":[{"id":"https://openalex.org/I93860229","display_name":"Politecnico di Milano","ror":"https://ror.org/01nffqt88","country_code":"IT","type":"education","lineage":["https://openalex.org/I93860229"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Giovanni Agosta","raw_affiliation_strings":["DEIB-Politecnico di Milano"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"DEIB-Politecnico di Milano","institution_ids":["https://openalex.org/I93860229"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.6651,"has_fulltext":false,"cited_by_count":13,"citation_normalized_percentile":{"value":0.71081275,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"5"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.9043274521827698},{"id":"https://openalex.org/keywords/reverse-engineering","display_name":"Reverse engineering","score":0.780651867389679},{"id":"https://openalex.org/keywords/compiler","display_name":"Compiler","score":0.7143774628639221},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.5585995316505432},{"id":"https://openalex.org/keywords/fuzz-testing","display_name":"Fuzz testing","score":0.5451428890228271},{"id":"https://openalex.org/keywords/semantics","display_name":"Semantics (computer science)","score":0.5124343037605286},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.4996833801269531},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.4927859604358673},{"id":"https://openalex.org/keywords/representation","display_name":"Representation (politics)","score":0.47714635729789734},{"id":"https://openalex.org/keywords/intermediate-language","display_name":"Intermediate language","score":0.43380531668663025},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.4327857196331024},{"id":"https://openalex.org/keywords/source-code","display_name":"Source code","score":0.4236084520816803},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.2670326232910156},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.20783469080924988},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.1611419916152954}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.9043274521827698},{"id":"https://openalex.org/C207850805","wikidata":"https://www.wikidata.org/wiki/Q269608","display_name":"Reverse engineering","level":2,"score":0.780651867389679},{"id":"https://openalex.org/C169590947","wikidata":"https://www.wikidata.org/wiki/Q47506","display_name":"Compiler","level":2,"score":0.7143774628639221},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.5585995316505432},{"id":"https://openalex.org/C111065885","wikidata":"https://www.wikidata.org/wiki/Q1189053","display_name":"Fuzz testing","level":3,"score":0.5451428890228271},{"id":"https://openalex.org/C184337299","wikidata":"https://www.wikidata.org/wiki/Q1437428","display_name":"Semantics (computer science)","level":2,"score":0.5124343037605286},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.4996833801269531},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.4927859604358673},{"id":"https://openalex.org/C2776359362","wikidata":"https://www.wikidata.org/wiki/Q2145286","display_name":"Representation (politics)","level":3,"score":0.47714635729789734},{"id":"https://openalex.org/C77660490","wikidata":"https://www.wikidata.org/wiki/Q244916","display_name":"Intermediate language","level":3,"score":0.43380531668663025},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.4327857196331024},{"id":"https://openalex.org/C43126263","wikidata":"https://www.wikidata.org/wiki/Q128751","display_name":"Source code","level":2,"score":0.4236084520816803},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.2670326232910156},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.20783469080924988},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.1611419916152954},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C94625758","wikidata":"https://www.wikidata.org/wiki/Q7163","display_name":"Politics","level":2,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/ccst.2018.8585654","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ccst.2018.8585654","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 International Carnahan Conference on Security Technology (ICCST)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":9,"referenced_works":["https://openalex.org/W1522250664","https://openalex.org/W2036853599","https://openalex.org/W2153185479","https://openalex.org/W2530629736","https://openalex.org/W2583316335","https://openalex.org/W2584230735","https://openalex.org/W2798388185","https://openalex.org/W4246166885","https://openalex.org/W6631155369"],"related_works":["https://openalex.org/W3083197299","https://openalex.org/W4392500255","https://openalex.org/W3129800153","https://openalex.org/W1980076962","https://openalex.org/W4236307538","https://openalex.org/W75415634","https://openalex.org/W2153185479","https://openalex.org/W3138340026","https://openalex.org/W4246166885","https://openalex.org/W2255990315"],"abstract_inverted_index":{"Reverse":[0],"engineering":[1,40],"is":[2,50,154],"a":[3,23,38,88,172,215,245],"key":[4,149],"technique":[5,216],"to":[6,54,63,98,104,136,155,178,195,248],"perform":[7],"security":[8,224],"audits":[9],"and":[10,46,121,123,193,243],"malware":[11],"analysis.":[12],"However,":[13],"existing":[14],"tools":[15],"have":[16],"severe":[17],"limitations":[18],"in":[19,222],"terms":[20],"of":[21,27,106,147,151,159,233,239],"recovering":[22],"correct,":[24],"semantics-preserving":[25],"representation":[26,81,103],"the":[28,74,83,101,107,139,148,157,160,165,169,201,231,237,240,261],"program":[29,162,202,258],"behavior.":[30,132,184],"This":[31,94,133],"work":[32],"introduces":[33],"rev.":[34,96,152,234],"ng":[35,97,153],"[1]":[36],"[2],":[37],"reverse":[39],"framework":[41],"based":[42],"on":[43,168,182],"QEMU":[44,49],"[3]":[45],"LLVM":[47],"[4].":[48],"an":[51,68,204],"emulator":[52],"able":[53],"handle":[55],"about":[56],"20":[57],"distinct":[58],"architectures.":[59],"We":[60],"employ":[61],"it":[62],"translate":[64],"machine":[65],"code":[66],"into":[67,82,203],"Intermediate":[69],"Representation":[70],"(IR)":[71],"independent":[72],"from":[73],"input":[75,197],"architecture.":[76],"Then,":[77],"we":[78,114,142,174,187,229,251],"transform":[79],"this":[80,227],"IR":[84],"employed":[85],"by":[86,111],"LLVM,":[87],"robust":[89],"open":[90],"source":[91],"compiler":[92],"framework.":[93],"allows":[95,134],"easily":[99,253],"recompile":[100,124],"obtained":[102],"any":[105],"10":[108],"architectures":[109],"supported":[110],"LLVM.":[112],"Currently,":[113],"can":[115,175,188,209,252],"analyze":[116],"large":[117],"programs":[118,127,177],"(e.g.,":[119],"GCC":[120],"Perl)":[122],"them,":[125],"obtaining":[126],"that":[128,141,199],"preserve":[129,156],"their":[130,183,191],"original":[131],"us":[135],"quickly":[137],"validate":[138],"analyses":[140],"designed.":[143],"In":[144,185,226],"fact,":[145],"one":[146],"goals":[150],"semantics":[158],"analyzed":[161],"across":[163],"all":[164],"transformations":[166],"performed":[167],"code.":[170],"As":[171],"consequence,":[173],"instrument":[176],"get":[179],"deeper":[180],"insights":[181],"addition,":[186],"identify":[189],"functions,":[190],"inputs,":[192],"try":[194],"generate":[196,254],"values":[198],"lead":[200],"invalid":[205,257],"state.":[206],"Such":[207],"inputs":[208,255],"be":[210],"generated":[211,241],"through":[212],"coverage-guided":[213],"fuzzing,":[214],"known":[217],"for":[218],"being":[219],"extremely":[220],"effective":[221],"finding":[223],"vulnerabilities.":[225],"paper":[228],"introduce":[230],"architecture":[232],"ng,":[235],"demonstrate":[236],"performances":[238],"code,":[242],"discuss":[244],"case":[246],"study,":[247],"show":[249],"how":[250],"triggering":[256],"states":[259],"using":[260],"above":[262],"mentioned":[263],"techniques.":[264]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":5},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":2},{"year":2019,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}