%0 Journal Article
%T RobinDetect:字节码级的漏洞规则提取工具
RobinDetect: Bytecode-Level Vulnerability Rule Extraction Tool
%A 张居正
%J Computer Science and Application
%P 9-21
%@ 2161-881X
%D 2025
%I Hans Publishing
%R 10.12677/csa.2025.154073
%X 随着区块链技术的广泛应用,智能合约的安全性问题日益凸显,尤其是跨链交易漏洞的检测成为当前研究的难点。本文提出了一种名为RobinDetect的字节码级漏洞规则提取工具,旨在通过对上链后的问题交易进行分析并快速提取其漏洞规则,实现对跨链桥漏洞的高效识别。RobinDetect通过交易收集器、交易分组器、调用流提取器、数据流提取器和规则提取器等组件协同工作,从交易数据中提取关键指令序列,并生成具有依赖关系的漏洞检测规则。实验表明,该工具比Aegis展现出了更高的检测精度,并且能够有效提取Xscope提供的交易漏洞规则,成功应用于跨链桥漏洞的检测。
With the widespread application of blockchain technology, the security issues of smart contracts have become increasingly prominent, especially the detection of vulnerabilities in cross-chain transactions, which has become a major challenge in current research. This paper proposes a bytecode-level vulnerability rule extraction tool named RobinDetect, which aims to analyze problematic transactions after they are on-chain and rapidly extract their vulnerability rules to achieve efficient identification of cross-chain bridge vulnerabilities. RobinDetect works through the collaborative efforts of several components, including a transaction collector, transaction grouper, call flow extractor, data flow extractor, and rule extractor. These components work together to extract key instruction sequences from transaction data and generate vulnerability detection rules with dependencies. Experiments have shown that this tool demonstrates higher detection accuracy than Aegis and can effectively extract vulnerability rules provided by Xscope, successfully applying to the detection of cross-chain bridge vulnerabilities.
%K 跨链桥,
%K 漏洞规则提取,
%K 漏洞检测
Cross-Chain Bridge
%K Vulnerability Rule Extraction
%K Vulnerability Detection
%U http://www.hanspub.org/journal/PaperInformation.aspx?PaperID=110875