English

VulCatch: Enhancing Binary Vulnerability Detection through CodeT5 Decompilation and KAN Advanced Feature Extraction

Cryptography and Security 2024-08-15 v1 Artificial Intelligence Machine Learning Software Engineering

Abstract

Binary program vulnerability detection is critical for software security, yet existing deep learning approaches often rely on source code analysis, limiting their ability to detect unknown vulnerabilities. To address this, we propose VulCatch, a binary-level vulnerability detection framework. VulCatch introduces a Synergy Decompilation Module (SDM) and Kolmogorov-Arnold Networks (KAN) to transform raw binary code into pseudocode using CodeT5, preserving high-level semantics for deep analysis with tools like Ghidra and IDA. KAN further enhances feature transformation, enabling the detection of complex vulnerabilities. VulCatch employs word2vec, Inception Blocks, BiLSTM Attention, and Residual connections to achieve high detection accuracy (98.88%) and precision (97.92%), while minimizing false positives (1.56%) and false negatives (2.71%) across seven CVE datasets.

Keywords

Cite

@article{arxiv.2408.07181,
  title  = {VulCatch: Enhancing Binary Vulnerability Detection through CodeT5 Decompilation and KAN Advanced Feature Extraction},
  author = {Abdulrahman Hamman Adama Chukkol and Senlin Luo and Kashif Sharif and Yunusa Haruna and Muhammad Muhammad Abdullahi},
  journal= {arXiv preprint arXiv:2408.07181},
  year   = {2024}
}
R2 v1 2026-06-28T18:12:16.182Z