https://github.com/csvl/SEMA
SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create representative signatures based on System Call Dependency graph (SCDG). Those SCDGs can be exploited in machine learning modules to do classification/detection.
https://github.com/csvl/SEMA
angr binary-analysis classification concolic-execution ctf cybersecurity detection linux malware malware-analysis malware-detection malware-research python reverse reverse-engineering sema static-analysis symbolic symbolic-execution windows
Last synced: 4 months ago
JSON representation
SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create representative signatures based on System Call Dependency graph (SCDG). Those SCDGs can be exploited in machine learning modules to do classification/detection.
- Host: GitHub
- URL: https://github.com/csvl/SEMA
- Owner: csvl
- License: bsd-2-clause
- Created: 2022-03-11T08:36:34.000Z (about 3 years ago)
- Default Branch: production
- Last Pushed: 2024-11-26T22:09:17.000Z (6 months ago)
- Last Synced: 2025-01-14T10:10:41.820Z (4 months ago)
- Topics: angr, binary-analysis, classification, concolic-execution, ctf, cybersecurity, detection, linux, malware, malware-analysis, malware-detection, malware-research, python, reverse, reverse-engineering, sema, static-analysis, symbolic, symbolic-execution, windows
- Language: Python
- Homepage: https://csvl.github.io/SEMA/
- Size: 1.42 GB
- Stars: 103
- Watchers: 3
- Forks: 21
- Open Issues: 14
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Contributing: CONTRIBUTING.md
- License: LICENSE
Awesome Lists containing this project
- awesome-ai-cybersecurity - SEMA