通信学报2025,Vol.46Issue(12):44-56,13.DOI:10.11959/j.issn.1000-436x.2025228
融合Intel PT与动态插桩的二进制程序跟踪分析框架
Binary program tracing and analysis framework by integrating Intel PT and dynamic instrumentation
摘要
Abstract
To address the problem that while dynamic binary instrumentation frameworks are widely used for automated analysis,they face challenges such as performance overhead and usability issues,a hybrid hardware-software framework was proposed for dynamic binary program tracing,enabling comprehensive monitoring and analysis of program execu-tion.The Intel processor trace(PT)and the dynamic binary instrumentation framework were integrated,thereby enhanc-ing its capability for tracing and analysis of binary programs.Building upon this foundation,an online tracing-based bi-nary analysis method was introduced further to improve both analytical flexibility and performance.A prototype of the proposed framework had been implemented on the Windows platform and evaluated using both benchmark suites and real-world applications.The experimental results confirm the effectiveness and practical value of the proposed analysis method.关键词
程序分析/动态跟踪/二进制插桩/硬件机制Key words
program analysis/dynamic tracing/binary instrumentation/hardware mechanism分类
信息技术与安全科学引用本文复制引用
潘家晔,沙乐天,鲁京,肖甫..融合Intel PT与动态插桩的二进制程序跟踪分析框架[J].通信学报,2025,46(12):44-56,13.基金项目
国家自然科学基金资助项目(No.62302193) (No.62302193)
江苏省2024前沿技术研发计划基金资助项目(No.BF2024071)The National Natural Science Foundation of China(No.62302193),The 2024 Frontier Technology Research and Development Program of Jiangsu(No.BF2024071) (No.BF2024071)
