CryptoMagnifier
Previous works have made many efforts to detect cryptographic misuse bugs. However, these existing tools still have some limitations on analyzing multi-architecture IoT firmware images, mainly suffering from the accuracy and efficiency issues.
Available Work
- A static analysis tool for detecting cryptographic misuse bug in firmware.
- A IoT-specific cryptographic misuse testing benchmark for public usage.
Ongoing Work
- Detecting more Crypto libraries in firmware.
- Identifying Crypto library in binary executable files.
members
