基于控制流和数据段分析的反汇编策略研究

Research on Disassembly Strategy Based on Control Flow and Data Section Analysis

反汇编策略大体可以分为线性扫描策略和基于控制流的递归扫描策略,该文通过对基于控制流的递归扫描策略以及多款处理器指令系统的研究,提出了一种基于程序静态流程遍历图的反汇编策略,使用6种策略将隐匿于数据段中的程序段提取出来,提高了反汇编结果的精确度。

Generally, the disassembly strategy can be divided into the liner-scanning strategy and recursion-scanning strategy based on control flow. Through researching on the recursion-scanning strategy based on control flow and instruction sets of many processors, this essay proposes a kind of disassembly strategy based on the static program flow traversal graph, and makes use of six strategies to pick up the hidden program sections from the data sections, thereby raising the precision of the disassembly result.