====== Code instrumentation for security analysis ====== The project aims at building tools to: * Counter the new code injection vulnerability techniques based on "return-oriented programming"; * Prevent buffer overflow exploiting through proper handling of segment violations; * Control flow graph reconstruction for malware analysis. The main development toolkit will be [[http://rogue.colorado.edu/pin/|Pin]], which provides a flexible infrastructure for code instrumentation. Contact people: * [[http://home.dei.polimi.it/agosta|Giovanni Agosta]] * [[http://home.dei.polimi.it/barenghi|Alessandro Barenghi]]