If you suspend your transcription on amara.org, please add a timestamp below to indicate how far you progressed! This will help others to resume your work!
Please do not press “publish” on amara.org to save your progress, use “save draft” instead. Only press “publish” when you're done with quality control.
There's a bunch of closed-source arm64 binaries out there that we can't really fuzz efficiently due to slow dynamic instrumentation.
Static binary rewriting has been around since decades, but was mostly focused on x86.
Porting it to arm64 should be a straightforward task, right?
This is the story of how a simple "4-week port of an existing x86 rewriter" took 2+ years instead.
Maybe the real treasure is the CVEs we made along the way?
Warning: the talk might contain sensitive imagery of ARM Assembly. Viewers have been warned.