Extending LLVM's BOLT-based Binary Analyser to Validate Stack Variable Initialisation

Francesco Cagnin·Quarkslab·Security / OSINT·

Introduction BOLT, originally developed at Meta and now part of the LLVM project., is a post-link optimiser that rewrites compiled applications to improve their performance. In 2024, Kristof Beyls at Arm built on top of BOLT a prototype static binary analyser to validate compiler code generation for security-related features. This tool operated directly at the binary level to "verify that a given hardening feature has been applied correctly across the whole binary," by checking whether the compi...

Read full article →

Related Articles

Google Chrome silently installs a 4 GB AI model on your device without consent
john-doe · Hacker News · 1mo ago
DNSSEC disruption affecting .de domains – Resolved
warpspin · Hacker News · 1mo ago
Security through obscurity is not bad
mobeigi · Hacker News · 1mo ago
US healthcare marketplaces shared citizenship and race data with ad tech giants
ZeidJ · Hacker News · 1mo ago
The text mode lie: why modern TUIs are a nightmare for accessibility
SpyCoder77 · Hacker News · 1mo ago