A new tool for malware researchers and reverse-engineers could make it easier to pinpoint bugs 
and flaws in commercial, closed-source software.
Sabre Security’s BinNavi product — which is expected to be released sometime this month — provides visualization and graphical views of executable code in closed-source software. In essence, it speeds auditing and testing by consolidating the binary code into more digestible and relevant pieces of code.
Think of it as x-ray vision for finding vulnerabilities in closed-source software, says Thomas Ptacek, a researcher with Matasano Security, who has tested BinNavi for auditing software.
Ptacek says the tool lets him see inside compiled binary code with a graphical map of the components. "Instead of reading millions of lines of machine code, I can look at the picture, spot important components, zoom in, and see how they relate to the rest of the program." Dark Reading – X-Ray Vision for Bug Finders – Security News Analysis
From around the Web
- Gmail to drop IE6 support this year
- Older IE Versions Maintain Sizable Market Share Despite Security Concerns
- Google Chrome 4 Bolsters Browser Security with New Features
- 10 Reasons Why Microsoft Should Have Discussed Security At CES
- How three vendors screwed up USB stick security
- 94 more secret Windows shortcuts
- Facebook CEO: Privacy Not the Social Norm
- More flash drive firms warn of security flaw; NIST investigates
- The ultimate God Mode list: 39 secret Windows 7 shortcuts
- Microsoft, Adobe prep critical security patches
- Mozilla fixes upgrade flaw in Firefox
- Chrome grabs market share from IE and Firefox, passes Safari
- Facebook enhances privacy settings
- Windows 7 tricks: 20 top tips and tweaks
- The ABCs of securing your Windows netbook