all InfoSec news
Binary type inference in Ghidra
Malware Analysis, News and Indicators - Latest topics malware.news
By Ian Smith
Trail of Bits is releasing BTIGhidra, a Ghidra extension that helps reverse engineers by inferring type information from binaries. The analysis is inter-procedural, propagating and resolving type constraints between functions while consuming user input to recover additional type information. This refined type information produces more idiomatic decompilation, enhancing reverse engineering comprehension. The figures below demonstrate how BTIGhidra improves decompilation readability without any user interaction:
Figure 1: Default Ghidra decompiler output
Figure 2: Ghidra output after running …
analysis binary bits constraints consuming engineering engineers extension functions ghidra ian information input recover reverse reverse engineering trail of bits