Η google announced today the free διάθεση του δημοφιλούς plug-in ανάλυσης patch BinDiff. For those who don't know the price of toolit was up to 200 dollars.
The tool is used by security technicians and helps them find useful information from patches analysis and comparing binaries.
Free allocation of the tool will certainly help reduce the cost of malware analysis for independent researchers but also for security organizations that were previously required to pay for a business license (much more accurate).
Software technician Christian Blichmann he says that Google is also using BinDiff to analyze malware.
"At Google, the BinDiff core engine is used to bulk malware, helping to protect both internal and external users," says Blichmann.
“BinDiff provides the underlying result comparisons from malicious software circulating around the world, and related families with billions of comparisons performed to date.”
The first price of the BluDiff before Google acquired the Zynamics creator 2011 was at 1170 dollars for a single license.
The BinDiff tool allows researchers to:
- They compare binary files for x86, MIPS, ARM, PowerPC, and other architectures supported by IDA Pro.
- Identify identical and similar functions in different executables.
- Make Port function names, front and rear comments, template comments, and local names from one disassembly to the other.
- Detection of changes between two variations of the same operation.
You can download the latest version of BinDiff from her site zynamics