Merge branch 'main' of git.mineau.eu:these-android-re/thesis
Some checks failed
/ test_checkout (push) Failing after 35s
Some checks failed
/ test_checkout (push) Failing after 35s
This commit is contained in:
commit
de568bd020
GPG key ID:
B66AEEDA9B645AD2
1 changed files with 20 additions and 18 deletions
38
slides.typ
38
slides.typ
|
|
@ -3,6 +3,7 @@
|
|||
#import "slides/icons.typ" as ico
|
||||
|
||||
#import "@local/codly:1.3.1": *
|
||||
#import "lib.typ": todo
|
||||
// Require local install, fix needed for highlight-inset
|
||||
// TMP="$(mktemp -d)" && curl -L https://github.com/Dherse/codly/archive/refs/tags/v1.3.1.zip -o "${TMP}/c.zip" && unzip -d "${TMP}" "${TMP}/c.zip" && mkdir -p ~/.local/share/typst/packages/local/codly && mv "${TMP}/codly-1.3.1" ~/.local/share/typst/packages/local/codly/1.3.1 && rm -rf "${TMP}"
|
||||
#import "@preview/codly-languages:0.1.1": *
|
||||
|
|
@ -151,7 +152,7 @@
|
|||
|
||||
Applications might use *obfuscation* to either:
|
||||
|
||||
- protect their IP
|
||||
- protect their #todo[Intelectual Properties]
|
||||
- hide malicious behaviour
|
||||
|
||||
#v(1em)#uncover(2)[
|
||||
|
|
@ -339,7 +340,7 @@
|
|||
title: [Problem Statement 1],
|
||||
)[
|
||||
#item-by-item[
|
||||
- Which tool to use?
|
||||
- Which static analysis tool to use?
|
||||
- Are they easy to install?
|
||||
- Are they working?
|
||||
]
|
||||
|
|
@ -391,7 +392,7 @@
|
|||
|
||||
#counter("logical-slide").update( n => n - 1 )
|
||||
#slide(
|
||||
title: [Class Loading],
|
||||
title: todo[Pb3],
|
||||
)[
|
||||
#item-by-item[
|
||||
- Used to select classes implementation
|
||||
|
|
@ -399,7 +400,7 @@
|
|||
- Doubious documentation
|
||||
- Not studied in the context of Android Static Analysis
|
||||
]
|
||||
#highlight-block(pb2-text)
|
||||
#highlight-block(pb2-text) #todo[couleur/italique pas lisible]
|
||||
]
|
||||
|
||||
#slide(
|
||||
|
|
@ -511,7 +512,7 @@
|
|||
]
|
||||
|
||||
#slide(
|
||||
title: [Methodology]
|
||||
title: [Methodology: Packaging Static Analysis Tools]
|
||||
)[
|
||||
#set align(center+horizon)
|
||||
#show figure.caption: none
|
||||
|
|
@ -692,7 +693,7 @@
|
|||
- Applications with *more bytecode* are *harder* to analyse
|
||||
- Applications targetting more recent versions of Android are harder to analyse
|
||||
- Confirms and *extends Reaves #etal*
|
||||
- Docker containers for tool *released*
|
||||
- Docker containers for tools *released*
|
||||
]
|
||||
#v(1fr)
|
||||
#align(center, text(fill: pirat-color.blue.darken(30%))[International Conference on Software and Systems Reuse (ICSR 2024)])
|
||||
|
|
@ -1074,19 +1075,19 @@
|
|||
[Androguard#super[#sym.star]]
|
||||
),
|
||||
table.hline(),
|
||||
[`classes.dex`], [`classes.dex`], [`classes10.dex`],
|
||||
[`classes.dex`], [`classes.dex`], r[`classes10.dex`],
|
||||
..if (i != 0) {(
|
||||
[], r[`classes1.dex`], [],
|
||||
[], r[`classes10.dex`], [],
|
||||
)},
|
||||
[`classes2.dex`], [`classes2.dex`], [`classes9.dex`],
|
||||
[`classes3.dex`], [`classes3.dex`], [`classes8.dex`],
|
||||
[`classes2.dex`], [`classes2.dex`], r[`classes9.dex`],
|
||||
[`classes3.dex`], [`classes3.dex`], r[`classes8.dex`],
|
||||
|
||||
table.cell(colspan: 3, inset: -3pt)[...],
|
||||
|
||||
[`classes9.dex`], [`classes9.dex`], [`classes2.dex`],
|
||||
[`classes10.dex`], [], [`classes1.dex`],
|
||||
strike[`classes1.dex`], [], [`classes.dex`],
|
||||
[`classes9.dex`], [`classes9.dex`], r[`classes2.dex`],
|
||||
[`classes10.dex`], [], r[`classes1.dex`],
|
||||
strike[`classes1.dex`], [], r[`classes.dex`],
|
||||
)}
|
||||
)
|
||||
]
|
||||
|
|
@ -1264,9 +1265,9 @@
|
|||
#set align(left)
|
||||
#align(center)[Pull Requests:]
|
||||
#v(-1em)
|
||||
#link("https://github.com/androguard/androguard/pull/1149")[androguard/pull/1149] \
|
||||
#link("https://github.com/soot-oss/soot/pull/2211")[soot/pull/2211] (#text(fill: green)[merged])\
|
||||
#link("https://github.com/skylot/jadx/pull/2702")[jadx/pull/2702] (#text(fill: orange)[\~merged])
|
||||
#link("https://github.com/soot-oss/soot/pull/2211")[soot/pull/2211] (#text(fill: green)[merged]) \
|
||||
#link("https://github.com/skylot/jadx/pull/2702")[jadx/pull/2702] (#text(fill: orange)[\~merged]) \
|
||||
#link("https://github.com/androguard/androguard/pull/1149")[androguard/pull/1149]
|
||||
]
|
||||
]
|
||||
|
||||
|
|
@ -1365,7 +1366,7 @@
|
|||
- #h(2em) Static Analysis Tools did not
|
||||
- We introduced obfuscation techniques based on this model
|
||||
- We did not find deliberate shadow attacks
|
||||
- #h(2em) Ambiguous cases exists in the wild
|
||||
- #h(2em) Ambiguous cases exist in the wild
|
||||
]
|
||||
#v(1fr)
|
||||
#align(center, text(fill: pirat-color.blue.darken(30%))[Digital Threats: Research and Practice, vol. 6 (3), 2025])
|
||||
|
|
@ -1833,7 +1834,7 @@
|
|||
#set align(center+horizon)
|
||||
#show figure.caption: none
|
||||
|
||||
#move(dx: -70pt)[Original #h(2em) Transformed]
|
||||
#move(dx: -70pt)[Original #h(2em) Patched]
|
||||
|
||||
/*
|
||||
* JFL bet on a question about SAAF
|
||||
|
|
@ -1863,6 +1864,7 @@
|
|||
#slide(title: [Experimentations])[
|
||||
#import "lib.typ": num
|
||||
#set align(center+horizon)
|
||||
#show table.header: strong // TODO
|
||||
#table(
|
||||
columns: 4,
|
||||
inset: 0.5em,
|
||||
|
|
@ -1874,7 +1876,7 @@
|
|||
[RASTA], [20 static analyses], num(62525), [2 months],
|
||||
[Class Loading], [1 static analysis], num(49975), [1 week],
|
||||
table.cell(rowspan: 3)[Theseus],
|
||||
[dynamic analysis], num(4957), [1 week],
|
||||
[1 dynamic analysis], num(4957), [1 week],
|
||||
[patching], num(4748), [2 days],
|
||||
[18 static analyses], num(8955), [2 months],
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue