Aravind Machiry

Graduate Research Assistant, University of California, Santa Baraba (USA)

Paper Title

Million Dollar Baby: Towards ANGRly conquering DARPA CGC

Abstract

A Dozen Years of Shellphish: From DEFCON to the DARPA Cyber Grand Challenge (CGC)
How we built an automatic exploitation system and qualified for the DARPA Cyber Grand Challenge

In this talk we will first introduce Shellphish, a group of security enthusiasts born in the University of California, Santa Barbara (UCSB).
Then, we will explain what we built to participate in the DARPA Cyber Grand Challenge, a security competition in which participants have to design a system able to automatically exploit and patch binaries.
In particular, we will show how it is possible to use the open source binary analysis framework we developed (https://github.com/angr/angr
) to  automatically find vulnerabilities in binaries.

Shellphish is  a group of security enthusiasts born in the University of California, Santa Barbara (UCSB) in 2004.
Since then Shellphish played countless Capture the Flag (CTF) security competitions, winning DEFCON CTF in 2005.

In 2015, Shellphish enrolled in the DARPA Cyber Grand Challenge (CGC).
Different from others security competitions, in which humans have to solve security challenges (such as exploiting binaries or web services), during the CGC participants have to build an automatic system playing for them!
In particular, teams have to build a system that is able to automatically find vulnerabilities in binaries, exploit them, and patch them, without any human intervention.

In this talk we will present the system we developed to participate to the CGC.
Our system was able to score among the top 7 teams during the qualification event of the CGC, qualifying us for the final event (in August 2016 at Las Vegas), in which participants will compete against each other to win a first-place prize of 2 million dollars (and eternal bragging rights).

Part of the system we developed is based on angr, the open source binary analysis framework developed at UCSB (available at:https://github.com/angr/angr
).
During the talk we will demo angr, showing how it can be used to automatically find vulnerabilities in binaries.
In particular, we will first show how angr helped us during CGC and then how, more generally, it can be used to automatically solve binaries challenges proposed in recent CTF security competitions.

Speaker Bio

Aravind Machiry is a second year PhD student in SecLab at University of California, Santa Barbara (https://seclab.cs.ucsb.edu/academic/people/). He is also part of Shellphish CTF team (donfos). He contributed to the CGC effort by inventing and developing techniques to automatically find vulnerabilities. He has considerable research experience in Android (https://scholar.google.com/citations?user=7R7KmIkAAAAJ&hl=en), currently he is working on novel vulnerability detection techniques in binaries.

Copyright © 2016-17 | Nullcon India | International Security Conference | All Rights Reserved