====== Code instrumentation for security analysis ======

The project aims at building tools to:

  * Counter the new code injection vulnerability techniques based on "return-oriented programming";
  * Prevent buffer overflow exploiting through proper handling of segment violations;
  * Control flow graph reconstruction for malware analysis.

The main development toolkit will be [[http://rogue.colorado.edu/pin/|Pin]], which provides a flexible infrastructure for code instrumentation.

Contact people:
  * [[http://home.dei.polimi.it/agosta|Giovanni Agosta]]
  * [[http://home.dei.polimi.it/barenghi|Alessandro Barenghi]]