Building SBOMs for COTS Android Apps

Deepbits developed a new technique that can detect third-party libraries and their versions accurately and efficiently. Detecting third-party libraries in Android apps is an important prerequisite for SBOM generation and management. However, transitive dependencies, partial builds, and code obfuscation make detecting third-party libraries difficult, let alone pinpointing the exact versions.

Featured post icon

How Do You Upgrade OpenSSL in Your Software Stack? — SBOM and OBOM assisted software upgrade

Discovering Known Vulnerabilities in IoT Devices via Code Search

A Fast and Accurate Disassembler based on Deep Learning

Searching Statically Linked Vulnerable Functions in Minutes

Searching Vulnerabilities in Binaries

A Comparative Review of Embedding based Binary Code Search Techniques