Taint analysis and pattern matching with Pin

地址：c7fK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4y4Z5k6h3I4D9i4K6u0V1M7%4c8G2M7X3#2Q4x3X3g2G2M7X3N6Q4x3V1k6T1L8r3!0Y4i4K6u0r3g2r3q4A6L8Y4c8Q4x3X3c8S2L8X3q4D9P5i4y4A6M7#2)9J5k6r3q4F1k6q4)9J5k6s2m8S2N6s2c8W2M7X3&6Q4x3X3c8E0j5i4c8U0K9r3W2F1k6#2)9J5k6s2N6A6N6r3S2Q4x3X3c8b7K9h3&6Q4x3V1j5`.
有兴趣的朋友可以把它翻译成中文的，呵呵

1 - Introduction
     1.1 - Concept
     1.2 - How taint
             1.2.1 - Dynamic analysis
             1.2.2 - Static analysis
             1.2.3 - Dynamic or Static ?
     1.3 - Some problematic
             1.3.1 - Byte or bits ?
2 - Simple taint a memory area
     2.1 - Catch the syscalls
     2.2 - Catch the LOAD and STORE instructions
     2.3 - Output
3 - Spread the taint
     3.1 - Requirement
     3.2 - Memory spread
     3.3 - Registers spread
     3.4 - Output
4 - Follow your data
     4.1 - Requirement
     4.2 - Output
5 - Detect a use after free vulnerability
     5.1 - Via obsolete stack frame
     5.2 - Classical use after free
             5.2.1 - Methodologie
             5.2.2 - Pin API - Symbols
             5.2.3 - Test on a C based program
             5.2.4 - Test on a C++ based program
6 - Detect pointer utilization without check
     6.1 - Via pattern matching
     6.2 - Output
7 - Conclusion
     7.1 - Taint analysis and pattern matching with Pin
     7.2 - References
             7.2.1 - Web references
             7.2.2 - My pin tool sources
     7.3 - Special Thanks

[培训]科锐软件逆向54期预科班、正式班开始火爆招生报名啦！！！