For full conference details, please visit the 2018 European LLVM Developers’ Meeting website.
Back To Schedule
Tuesday, April 17 • 9:45am - 10:25am
Implementing an LLVM based Dynamic Binary Instrumentation framework

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

This talk will go over our efforts to implement a new open-source DBI framework based on LLVM.

We have been using DBI frameworks in our work for a few years now: to gather coverage information for fuzzing, to break whitebox cryptography implementations used in DRM or to simply assist reverse engineering.

However we were dissatisfied with the state of existing DBI frameworks: they were either not supporting mobile architectures, too focused on a very specific use cases or very hard to use. This prompted the idea of developing QBDI (https://qbdi.quarkslab.com), a new framework which has been in development for two years and a half.

With QBDI we wanted to try a modern take on DBI framework design and build a tool crafted to support mobile architectures from the start, adopting a modular design enabling its integration with other tools and that was easy to use by abstracting all the low-level details from the users.

During the talk, we will review the motivation behind the usage of a DBI. We will explain its core principle and the main implementation challenges we faced. We will share some lessons learned in the process and how it changed the way we think about dynamic instrumentation tools.

avatar for Cédric Tessier

Cédric Tessier

Security Researcher & TL, Quarkslab
Cédric Tessier is a security researcher who designed instrumentation tools focused on reverse engineering as a member of a red team while working at Apple for five years. He continued to do so in the past few years at Quarkslab, as the leader of a team devoted to instrumentation... Read More →

Tuesday April 17, 2018 9:45am - 10:25am BST
Bristol 1