We will go over the pain-points of conventional open source disassemblers that Xori solves, examples of identifying suspicious functionality, and some of the interesting things we’ve done with the library. We invite everyone in the community to use it, help contribute and make it an increasingly valuable tool in this arms race.
By Amanda Rousseau & Richard Seymour
Full Abstract & Presentation Materials: https://www.blackhat.com/us-18/briefings/schedule/#finding-xori-malware-analysis-triage-with-automated-disassembly-11073
