基于程序建模的网络程序漏洞检测技术

研究和分析了网络程序漏洞检测方法，针对C/S结构下网络程序存在的二进制漏洞提出了一种基于程序建模的漏洞检测方法。该方法针对网络程序架构进行分析，通过抽取不同类型网络程序中的关键性系统函数，进行程序建模和检测系统执行模块开发。采用选择符号执行技术进行检测，通过函数挂钩的方式定制挂钩函数语义和函数执行触发的操作，引入符号化数据和引导符号执行过程。研究过程中基于该技术实现了一套网络程序漏洞检测系统，系统能够识别目标网络程序采用的I/O模型，根据目标网络程序的不同类型调取相应的系统执行模块，利用选择符号执行技术进行自动化漏洞检测过程。实验结果表明，相比于已有的检测工具，该系统在网络程序的漏洞检测方面针对性更强，程序代码的覆盖率更高，同时具有很好的可扩展性。 

Network program vulnerability detection technology based on program modeling

By studying and analyzing the vulnerability detection method of network program, a vulnerability detection method based on program modeling was proposed, and this method is aimed at the binary network program vulnerability in the C/S structure. The method analyzes the network program architecture, extracts the key system functions in different types of network programs, and develops the program modeling and detection system execution module. The technique of selective symbolic execution is adopted for detection, the semantics of hook function and the operation of trigger are customized by means of function hooks, and the execution process of symbolic data and guiding symbol is introduced. Based on this technology, a network program vulnerability detection system is realized. This system can identify the target web application using the I/O model. According to the different types of target program, it can call the different detection modules and use selective symbolic execution technology to implement the automated vulnerability detection process. The experimental results show that, compared with the existing detection tools, the system is more targeted in the vulnerability detection of network programs with higher vulnerability detection rate and good scalability.