Search papers, labs, and topics across Lattice.
Burnyard introduces a lightweight binary emulation platform that overcomes the limitations of traditional sandboxing in malware analysis by capturing observable runtime behavior and recording it as structured CSV event traces. This approach significantly reduces the resource intensity and time consumption associated with executing suspicious binaries in isolated environments. The key result demonstrates that Burnyard can effectively analyze malware without the risks of exposing samples to public platforms, enhancing both security and efficiency in malware detection.
Burnyard transforms malware analysis by enabling efficient, secure emulation that avoids the pitfalls of traditional sandboxing.
Malware analysis is a critical aspect of modern cybersecurity. The prevailing industry practice, sandboxing, involves executing suspicious binaries within isolated virtual machines in large-scale data centers. However, this approach can unintentionally expose samples to public platforms such as VirusTotal and MalwareBazaar, and it is both resource-intensive and time-consuming. Burnyard addresses these limitations through a lightweight binary emulation platform that captures observable runtime behavior and records it as structured CSV event traces.