Can Neural Decompilation Assist Vulnerability Prediction on Binary Code?
Vulnerability prediction is valuable in identifying security issues efficiently, even though it requires the source code of the target software system, which is a restrictive hypothesis. This paper presents an experimental study to predict vulnerabilities in binary code without source code or complex representations of the binary, leveraging the pivotal idea of decompiling the binary file through neural decompilation and predicting vulnerabilities through deep learning on the decompiled source code. The results outperform the state-of-the-art in both neural decompilation and vulnerability prediction, showing that it is possible to identify vulnerable programs with this approach concerning bi-class (vulnerable/non-vulnerable) and multi-class (type of vulnerability) analysis.
View on arXiv@article{cotroneo2025_2412.07538,
title={ Can Neural Decompilation Assist Vulnerability Prediction on Binary Code? },
author={ D. Cotroneo and F. C. Grasso and R. Natella and V. Orbinato },
journal={arXiv preprint arXiv:2412.07538},
year={ 2025 }
}