[PLUG] tool recommendation
Tim
tim-pdxlug at sentinelchicken.org
Tue Jun 29 14:50:24 UTC 2010
> Can someone recommend a tool that can scan a binary and detect open source
> code/tool is included inappropriately inside the binary?
> Not sure if this is even possible but thought I check with this group.
A quick and dirty way to check for obvious signs of code inclusion
would be to run strings(1) on the binaries and search for strings that
are most likely unique to the open source software in question. For
instance, if you find printf templates for error messages which are
uniquely identifiable to the open source package, then it's likely
that the code is included. If your software is compiled for Windows,
you'll want to use strings in UTF-16LE mode with '-e l'.
HTH,
tim
More information about the PLUG
mailing list