Minemu

From Minemu

(Redirected from Main Page)
Jump to: navigation, search
Performance graphs

Contents

News

Minemu is a minimal emulator for dynamic taint analysis

Sample taint dump output

Dynamic taint analysis is a very effective way of detecting and defending against memory corruption attacks, yet large performance penalties prevent its widespread use.

Minemu incurs a slowdown of only 1.5x-3x for real-world applications. Possibly fast enough for production systems.

Our paper: Minemu: The World’s Fastest Taint Tracker has been accepted for RAID2011.

Slides from Berlinsides 0x3

Source code

Source

Minemu is available under the Apache 2.0 licence.

Test VM

A test virtual machine (KVM/libvirt), running a vulnerable proftpd is available

A CPU with SSE4.1 support is required!!! (core 2 duo 45nm shrink / i3 / i5 / i7)

minemu.xml

minemu.qcow2.gz

# gunzip minemu.qcow2.gz
# mv minemu.qcow2 /var/lib/libvirt/images
# virsh define minemu.xml
user: minemu
password: minemutest

Dogfooding

This website runs on lighttpd/php/postgresql, all running under Minemu.

We also have an FTP server running ProFTPd 1.3.3a

Personal tools