RetDec: An Open-Source Machine-Code Decompiler
Machine-code decompilation transforms an executable file into a high-level language. It has found its applications mostly in the field of reverse engineering, where analysts use decompilers to inspect suspicious binaries.
This paper introduces RetDec, a recently open-sourced retargetable decompiler for platform-independent analysis of binary files. More specifically, we give an overview of the RetDec project’s history, its current state, comparison with other decompilers,
and an example of a successful application.
Jakub Kroustek is leading the threat intelligence team at Avast and previously at AVG, 7 years in total. Jakub is a malware analyst and reverse engineer with expertise in ransomware, botnets, and cryptography. He has his Ph.D. for a machine-code analysis.
Peter Matula is a senior developer at Avast Software. He focuses on reverse-engineering research and is currently the main developer of the RetDec decompiler. He received his MSc. degree from the Faculty of Information Technology, Brno University of Technology, Czech Republic.
Petr Zemek is a software developer at Avast software, where he works on tools used by malware analysts. He has a Ph.D. in theoretical computer science from the Brno University of Technology, Czech Republic. His general interests are programming languages and practices, open-source sofware development, and operating systems.