https://miscreants.github.io/blog.trailofbits.com/authors/andrew-ruef/Recent content in Andrew Ruef on The Trail of Bits BlogHugoen-usSun, 27 Apr 2014 12:25:50 -0400https://miscreants.github.io/blog.trailofbits.com/2014/04/27/using-static-analysis-and-clang-to-find-heartbleed/Sun, 27 Apr 2014 12:25:50 -0400https://miscreants.github.io/blog.trailofbits.com/2014/04/27/using-static-analysis-and-clang-to-find-heartbleed/Background Friday night I sat down with a glass of Macallan 15 and decided to write a static checker that would find the Heartbleed bug. I decided that I would write it as an out-of-tree clang analyzer plugin and evaluate it on a few very small functions that had the spirit of the Heartbleed bug […]https://miscreants.github.io/blog.trailofbits.com/2014/02/23/semantic-analysis-of-native-programs-introducing-codereason/Sun, 23 Feb 2014 22:59:13 -0500https://miscreants.github.io/blog.trailofbits.com/2014/02/23/semantic-analysis-of-native-programs-introducing-codereason/Have you ever wanted to make a query into a native mode program asking about program locations that write a specific value to a register? Have you ever wanted to automatically deobfuscate obfuscated strings? Reverse engineering a native program involves understanding its semantics at a low level until a high level picture of functionality emerges. […]https://miscreants.github.io/blog.trailofbits.com/2012/10/29/ending-the-love-affair-with-exploitshield/Mon, 29 Oct 2012 11:36:24 -0400https://miscreants.github.io/blog.trailofbits.com/2012/10/29/ending-the-love-affair-with-exploitshield/ExploitShield has been marketed as offering protection “against all known and unknown 0-day day vulnerability exploits, protecting users where traditional anti-virus and security products fail.” I found this assertion quite extraordinary and exciting! Vulnerabilities in software applications are real problems for computer users worldwide. So far, we have been pretty bad at providing actual technology […]