DOCSLIB.ORG

Probabilistic Naming of Functions in Stripped Binaries

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text

Load more

Probabilistic Naming of Functions in Stripped Binaries James Patrick-Evans Lorenzo Cavallaro Johannes Kinder Royal Holloway, University of London King’s College London Bundeswehr University Munich Egham, United Kingdom London, United Kingdom Munich, Germany [email protected] [email protected] [email protected] ABSTRACT software developers can use symbols to relate binary code to source- Debugging symbols in binary executables carry the names of func- level information such as file names, data structures and names tions and global variables. When present, they greatly simplify the of functions. When releasing software for distribution, however, process of reverse engineering, but they are almost always removed symbols are routinely stripped from the binaries; this decreases (stripped) for deployment. We present the design and implementa- the file size and impedes reverse engineering of proprietary code tion of punstrip, a tool which combines a probabilistic fingerprint (commercial or malicious). of binary code based on high-level features with a probabilistic State-of-the-art reverse engineering tools, such as the IDA Pro graphical model to learn the relationship between function names disassembler, use databases of function signatures to reliably iden- and program structure. As there are many naming conventions and tify standard functions such as those included by a statically linked developer styles, functions from different applications do not neces- C runtime. This works well for systems where libraries are stan- sarily have the exact same name, even if they implement the exact dardized and rarely recompiled. IDA Pro for example, maintains a same functionality. We therefore evaluate punstrip across three lev- directory of FLIRT signature files for the most common Windows els of name matching: exact; an approach based on natural language libraries replicated for the most common compilers and instruction processing of name components; and using Symbol2Vec, a new em- set architectures (ISAs). Reverse engineers also manually create bedding of function names based on random walks of function call custom databases of such signatures, because they can immedi- graphs. We show that our approach is able to recognize functions ately identify many functions which otherwise would have to be compiled across different compilers and optimization levels and rediscovered in new binaries through costly manual analysis. Such then demonstrate that punstrip can predict semantically similar signature-based mechanisms can allow for some variation in the function names based on code structure. We evaluate our approach exact byte sequence matched, but they do not go further than rela- over open source C binaries from the Debian Linux distribution tively simple wildcard mechanisms. and compare against the state of the art. The problem of matching sequences of binary code while al- lowing for variation presents itself in a number of domains. Code CCS CONCEPTS clone detection [9, 18, 24, 27, 41], vulnerable code identification [11], code searching [15], and software plagiarism detection [31] address • Security and privacy ! Software reverse engineering; • Com- the problem of finding exact matches between software compo- puting methodologies ! Machine learning. nents. They focus on finding a fixed set of previously seen functions KEYWORDS with the main contributions drawn from methods of identifying semantically-equivalent code that have undergone various soft- binaries, function names, machine learning ware transformations; these transformations are typical of source ACM Reference Format: code compiled with different compilers or compilation optimiza- James Patrick-Evans, Lorenzo Cavallaro, and Johannes Kinder. 2020. Proba- tions. Techniques typically adopt static or dynamic approaches that bilistic Naming of Functions in Stripped Binaries. In Annual Computer Secu- build features of a functions interpreted execution or rely on fixed rity Applications Conference (ACSAC 2020), December 7–11, 2020, Austin, USA. properties of compiler generated machine code. Patch code analy- ACM, New York, NY, USA, 13 pages. https://doi.org/10.1145/3427228.3427265 sis [24, 52] borrows the same techniques from the problem domain for feature collection however it requires an existing executable 1 INTRODUCTION with prior information to perform analysis on differential updates. Reverse engineering is a crucial step in security audits of commer- Common to these domains and approaches is that they aim to cial software, forensic analysis of malware, software debugging identify exact function matches in isolation in previously seen exe- and exploit development. A main task in reverse engineering is to cutables. They do not provide a way to derive names for functions identify functional components in the software and discover the that do not have an exact (semantic or syntactic) match in the meaning behind different portions of binary code. When faced with set of known binaries. In contrast, our goal is to learn a general a flat region of executable code, it is difficult and time consuming to relationship between function names and their binary code. gain a high-level understanding of what it does. During debugging, We implement this approach with punstrip, our tool for revers- ing the stripping process and inferring symbol names in stripped ACSAC 2020, December 7–11, 2020, Austin, USA binaries. Punstrip builds a probabilistic model that learns how devel- © 2020 Association for Computing Machinery. opers use and name functions across a set of existing open source This is the author’s version of the work. It is posted here for your personal use. Not for redistribution. The definitive Version of Record was published in Annual Computer projects; using this model, we infer meaningful symbol informa- Security Applications Conference (ACSAC 2020), December 7–11, 2020, Austin, USA, tion based on similarities in program structure and semantics in https://doi.org/10.1145/3427228.3427265. previously unseen, stripped binaries. It is not necessary to discover 1 ACSAC 2020, December 7–11, 2020, Austin, USA James Patrick-Evans, Lorenzo Cavallaro, and Johannes Kinder Analysis Probabilistic Fingerprint Function Evaluation Boundaries Exact ELF Binaries Disassembly CRF ELF Exporter Features NLP VEX IR Symbol2Vec Feature Extraction Factor Graph Figure 1: A block diagram overview of the components in Punstrip. exactly the same identifiers that the developers used in the original structure for learning (§4). We then present our method for relat- program: for reverse engineering, we are interested in discovering ing function names, including Symbol2Vec (§5), before evaluating symbol names that are helpful to an analyst. With punstrip, reverse punstrip against previous work (§6). Finally, we discuss limitations engineers are able to pre-process an unknown binary to automati- of our approach (§7), contrast with related work (§8) and present cally annotate it with symbol information, saving them time and our conclusions (§9). preventing mistakes in doing further manual analysis. We make 1 punstrip available as open source . 2 OVERVIEW We make the following contributions: Figure 1 shows an architectural overview of the punstrip pipeline. • We present a novel approach to function identification and Punstrip takes as input a set of ELF binaries, which for training signature recognition for stripped binaries that uses features should be unstripped. In the initial analysis stage, punstrip extracts in a higher-level intermediate representation. This approach function symbols and their boundaries as defined in the symbol can scale to real world software and seeks to be agnostic to table, disassembles them, and lifts the instructions to the VEX inter- both compiler architectures, binary formats, and optimiza- mediate representation. From this representation and interproce- tions. dural control flow information among functions, punstrip extracts • We introduce a probabilistic graphical model for inferring a set of features that are stored in a database. Those features are function names in stripped binaries that compares the joint used to build a per-function fingerprint, as well as a factor graph probability of all unknown symbols simultaneously rather representing the relationships between functions and feature values than treating each function in isolation. The model builds on for each executable. Our probabilistic fingerprint and factor graph our probabilistic fingerprint and analysis between symbols are used to construct a Conditional Random Field (CRF) that learns in binaries. how individual functions interact with other code and data. • We describe Symbol2Vec, a new high dimensional vector After training a model on a large corpus of programs that include embedding for function symbols. We demonstrate that the symbol information, we are able to use the learned parameters embedding is meaningful by creating a set of relationships to infer the most likely function names in stripped binaries. The within the space of function names drawn from C bina- inferred function symbol names can then be added to the stripped ries distributed as part of Debian GNU/Linux. We use Sym- binary and used for debugging and reverse engineering purposes. In bol2Vec as one metric in the evaluation of punstrip to capture this paper, we focus exclusively on the problem of naming functions; relations between function names that do not share any lex- for detecting function boundaries in stripped
Recommended publications
  • Unemployment Benefits and Reservation Wages: Key Elasticities from a Stripped-Down Job Search Approach

    Unemployment Benefits and Reservation Wages: Key Elasticities from a Stripped-Down Job Search Approach

    Estudos e Documentos de Trabalho Working Papers 3 | 2008 UNEMPLOYMENT BENEFITS AND RESERVATION WAGES: KEY ELASTICITIES FROM A STRIPPED-DOWN JOB SEARCH APPROACH John T. Addison Mário Centeno Pedro Portugal February 2008 The analyses, opinions and findings of these papers represent the views of the authors, they are not necessarily those of the Banco de Portugal. Please address correspondence to Pedro Portugal Economics and Research Department Banco de Portugal, Av. Almirante Reis no. 71, 1150-012 Lisboa, Portugal; Tel.: 351 213 138 410, Email: [email protected] BANCO DE PORTUGAL Economics and Research Department Av. Almirante Reis, 71-6th floor 1150-012 Lisboa www.bportugal.pt Printed and distributed by Administrative Services Department Av. Almirante Reis, 71-2nd floor 1150-012 Lisboa Number of copies printed 170 issues Legal Deposit no. 3664/83 ISSN 0870-0117 ISBN Unemployment Benefits and Reservation Wages: Key Elasticities from a Stripped-Down Job Search Approach By John T. Addison†,M´ario Centeno‡ and Pedro Portugal§ †Queen’s University Belfast and University of South Carolina ‡Banco de Portugal and Universidade T´ecnica de Lisboa §Banco de Portugal and Universidade NOVA de Lisboa This Version: February 2008 Abstract This paper exploits survey information on reservation wages and data on actual wages from the European Community Household Panel to deduce in the manner of Lancaster and Chesher (1983) additional parameters of a stylized structural search model; specifically, reservation wage and transition/duration elasticities. The informational requirements of this approach are minimal, thereby facilitating comparisons between countries. Further, its policy content is immediate insofar as the impact of unemployment benefit rules and measures increasing the arrival rate of job offers are concerned.
  • University of Glasgow, Glasgow, Scotland

    University of Glasgow, Glasgow, Scotland

    UNIVERSITY OF WISCONSIN EAU CLAIRE CENTER FOR INTERNATIONAL EDUCATION Study Abroad UNIVERSITY OF GLASGOW, GLASGOW, SCOTLAND 2020 Program Guide ABLE OF ONTENTS Sexual Harassment and “Lad Culture” in the T C UK ...................................................................... 12 Academics .............................................................. 5 Emergency Contacts ...................................... 13 Pre-departure Planning ..................................... 5 911 Equivalent in the UK ............................... 13 Graduate Courses ............................................. 5 Marijuana and other Illegal Drugs ................ 13 Credits and Course Load .................................. 5 Required Documents .......................................... 14 Registration at Glasgow .................................... 5 Visa ................................................................... 14 Class Attendance ............................................... 5 Why Can’t I fly through Ireland? ................... 14 Grades ................................................................. 6 Visas for Travel to Other Countries .............. 14 Glasgow & UWEC Transcripts ......................... 6 Packing Tips ........................................................ 14 UK Academic System ....................................... 6 Weather ............................................................ 14 Semester Students Service-Learning ............. 9 Clothing............................................................
  • Netflix and the Development of the Internet Television Network

    Netflix and the Development of the Internet Television Network

    Syracuse University SURFACE Dissertations - ALL SURFACE May 2016 Netflix and the Development of the Internet Television Network Laura Osur Syracuse University Follow this and additional works at: https://surface.syr.edu/etd Part of the Social and Behavioral Sciences Commons Recommended Citation Osur, Laura, "Netflix and the Development of the Internet Television Network" (2016). Dissertations - ALL. 448. https://surface.syr.edu/etd/448 This Dissertation is brought to you for free and open access by the SURFACE at SURFACE. It has been accepted for inclusion in Dissertations - ALL by an authorized administrator of SURFACE. For more information, please contact [email protected]. Abstract When Netflix launched in April 1998, Internet video was in its infancy. Eighteen years later, Netflix has developed into the first truly global Internet TV network. Many books have been written about the five broadcast networks – NBC, CBS, ABC, Fox, and the CW – and many about the major cable networks – HBO, CNN, MTV, Nickelodeon, just to name a few – and this is the fitting time to undertake a detailed analysis of how Netflix, as the preeminent Internet TV networks, has come to be. This book, then, combines historical, industrial, and textual analysis to investigate, contextualize, and historicize Netflix's development as an Internet TV network. The book is split into four chapters. The first explores the ways in which Netflix's development during its early years a DVD-by-mail company – 1998-2007, a period I am calling "Netflix as Rental Company" – lay the foundations for the company's future iterations and successes. During this period, Netflix adapted DVD distribution to the Internet, revolutionizing the way viewers receive, watch, and choose content, and built a brand reputation on consumer-centric innovation.
  • A Threshold Crossed Israeli Authorities and the Crimes of Apartheid and Persecution WATCH

    A Threshold Crossed Israeli Authorities and the Crimes of Apartheid and Persecution WATCH

    HUMAN RIGHTS A Threshold Crossed Israeli Authorities and the Crimes of Apartheid and Persecution WATCH A Threshold Crossed Israeli Authorities and the Crimes of Apartheid and Persecution Copyright © 2021 Human Rights Watch All rights reserved. Printed in the United States of America ISBN: 978-1-62313-900-1 Cover design by Rafael Jimenez Human Rights Watch defends the rights of people worldwide. We scrupulously investigate abuses, expose the facts widely, and pressure those with power to respect rights and secure justice. Human Rights Watch is an independent, international organization that works as part of a vibrant movement to uphold human dignity and advance the cause of human rights for all. Human Rights Watch is an international organization with staff in more than 40 countries, and offices in Amsterdam, Beirut, Berlin, Brussels, Chicago, Geneva, Goma, Johannesburg, London, Los Angeles, Moscow, Nairobi, New York, Paris, San Francisco, Sydney, Tokyo, Toronto, Tunis, Washington DC, and Zurich. For more information, please visit our website: http://www.hrw.org APRIL 2021 ISBN: 978-1-62313-900-1 A Threshold Crossed Israeli Authorities and the Crimes of Apartheid and Persecution Map .................................................................................................................................. i Summary ......................................................................................................................... 2 Definitions of Apartheid and Persecution .................................................................................
  • First Name Last Name Title Company Country Anouk Florencia Aaron Warner Bros

    First Name Last Name Title Company Country Anouk Florencia Aaron Warner Bros

    First Name Last Name Title Company Country Anouk Florencia Aaron Warner Bros. International Television United States Carlos Abascal Director, Ole Communications Ole Communications United States Kelly Abcarian SVP, Product Leadership Nielsen United States Mike Abend Director, Business Development New Form Digital United States Friday Abernethy SVP, Content Distribution Univision Communications Inc United States Jack Abernethy Twentieth Television United States Salua Abisambra Manager Salabi Colombia Rafael Aboy Account Executive Newsline Report Argentina Cori Abraham SVP of Development and International Oxygen Network United States Mo Abraham Camera Man VIP Television United States Cris Abrego Endemol Shine Group Netherlands Cris Abrego Chairman, Endemol Shine Americas and CEO, Endemol Shine North EndemolAmerica Shine North America United States Steve Abrego Endemol Shine North America United States Patrícia Abreu Dirctor Upstar Comunicações SA Portugal Manuel Abud TV Azteca SAB de CV Mexico Rafael Abudo VIP 2000 TV United States Abraham Aburman LIVE IT PRODUCTIONS Francine Acevedo NATPE United States Hulda Acevedo Programming Acquisitions Executive A+E Networks Latin America United States Kristine Acevedo All3Media International Ric Acevedo Executive Producer North Atlantic Media LLC United States Ronald Acha Univision United States David Acosta Senior Vice President City National Bank United States Jorge Acosta General Manager NTC TV Colombia Juan Acosta EVP, COO Viacom International Media Networks United States Mauricio Acosta President and CEO MAZDOC Colombia Raul Acosta CEO Global Media Federation United States Viviana Acosta-Rubio Telemundo Internacional United States Camilo Acuña Caracol Internacional Colombia Andrea Adams Director of Sales FilmTrack United States Barbara Adams Founder Broken To Reign TV United States Robin C. Adams Executive In Charge of Content and Production Endavo Media and Communications, Inc.
  • Multi-Periodic Pulsations of a Stripped Red Giant Star in an Eclipsing Binary

    Multi-Periodic Pulsations of a Stripped Red Giant Star in an Eclipsing Binary

    1 Multi-periodic pulsations of a stripped red giant star in an eclipsing binary Pierre F. L. Maxted1, Aldo M. Serenelli2, Andrea Miglio3, Thomas R. Marsh4, Ulrich Heber5, Vikram S. Dhillon6, Stuart Littlefair6, Chris Copperwheat7, Barry Smalley1, Elmé Breedt4, Veronika Schaffenroth5,8 1 Astrophysics Group, Keele University, Keele, Staffordshire, ST5 5BG, UK. 2 Instituto de Ciencias del Espacio (CSIC-IEEC), Facultad de Ciencias, Campus UAB, 08193, Bellaterra, Spain. 3 School of Physics and Astronomy, University of Birmingham, Edgbaston, Birmingham, B15 2TT, UK. 4 Department of Physics, University of Warwick, Coventry, CV4 7AL, UK. 5 Dr. Karl Remeis-Observatory & ECAP, Astronomical Institute, Friedrich-Alexander University Erlangen-Nuremberg, Sternwartstr. 7, 96049, Bamberg, Germany. 6 Department of Physics and Astronomy, University of Sheffield, Sheffield, S3 7RH, UK. 7Astrophysics Research Institute, Liverpool John Moores University, Twelve Quays House, Egerton Wharf, Birkenhead, Wirral, CH41 1LD, UK. 8Institute for Astro- and Particle Physics, University of Innsbruck, Technikerstrasse. 25/8, 6020 Innsbruck, Austria. Low mass white dwarfs are the remnants of disrupted red giant stars in binary millisecond pulsars1 and other exotic binary star systems2–4. Some low mass white dwarfs cool rapidly, while others stay bright for millions of years due to stable 2 fusion in thick surface hydrogen layers5. This dichotomy is not well understood so their potential use as independent clocks to test the spin-down ages of pulsars6,7 or as probes of the extreme environments in which low mass white dwarfs form8–10 cannot be fully exploited. Here we present precise mass and radius measurements for the precursor to a low mass white dwarf.
  • Tbivision.Com October/November 2018

    Tbivision.Com October/November 2018

    Formats TBIvision.com October/November 2018 MIPCOM Stand No: P3.C10 @all3media_int all3mediainternational.com FormatspOFC OctNov18.indd 1 01/10/2018 20:27 The original and best adventure reality format Produced in more than 40 countries 37 seasons in the US Production hubs available FormatspIFC Banijay Survivor OctNov18.indd 1 02/10/2018 10:42 CONTENTS INSIDE THIS ISSUE 6 8 14 This issue 6 Beat the Internet with Vice 14 TV’s love affair Kaltrina Bylykbashi visits the set for Vice Studios and UKTV’s Beat the ITV Studios Global Creative Network MD, Mike Beale, speaks to TBI Internet, a new play-along game show about Love Island’s international success 8 Hot picks Regulars TBI looks at some of the hottest upcoming unscripted titles. From Evil 4. People A round up of the latest movers and shakers in international TV Monkeys to finding The Greatest Dancer, there’s something for everyone 16. Last Word: Endemol Shine Group’s Lisa Perrin in our top list Editor Manori Ravindran • [email protected] • manori_r Television Business International (USPS 003-807) is published bi-monthly (Jan, Mar, Apr, Jun, Aug and Oct) by Informa Telecoms Media, Maple House, 149 Tottenham Court Road, London, W1T 7AD, United Managing editor Kaltrina Bylykbashi • [email protected] • @bylkbashi Kingdom. The 2006 US Institutional subscription price is $255. Airfreight and mailing in the USA by Sales manager Michael Callan • [email protected] Agent named Air Business, C/O Priority Airfreight NY Ltd, 147-29 182nd Street, Jamaica, NY11413. Periodical postage paid at Jamaica NY 11431.
  • The Greater Boston Housing Report Card 2015 the Housing Cost Conundrum

    The Greater Boston Housing Report Card 2015 the Housing Cost Conundrum

    UNDERSTANDING BOSTON The Greater Boston Housing Report Card 2015 The Housing Cost Conundrum Barry Bluestone James Huessy Eleanor White Charles Eisenberg Tim Davis with assistance from William Reyelt Prepared by The Kitty and Michael Dukakis Center for Urban and Regional Policy Northeastern University for The Boston Foundation Edited by Rebecca Koepnick Mary Jo Meisner Kathleen Clute The Boston Foundation November 2015 The Boston Foundation, Greater Boston’s community foundation, is one of the largest community foundations in the nation, with net assets of some $1 billion. In 2014, the Foundation and its donors made more than $112 million in grants to nonprofit organizations and received gifts of nearly $112 million. In celebration of its Centennial in 2015, the Boston Foundation has launched the Campaign for Boston to strengthen the Permanent Fund for Boston, the only endowment fund focused on the most pressing needs of Greater Boston. The Foundation is proud to be a partner in philanthropy, with more than 1,000 separate charitable funds established by donors either for the general benefit of the community or for special purposes. The Boston Foundation also serves as a major civic leader, think tank and advocacy organization, commissioning research into the most critical issues of our time and helping to shape public policy designed to advance opportunity for everyone in Greater Boston. The Philanthropic Initiative (TPI), an operating unit of the Foundation, designs and implements customized philanthropic strategies for families, foundations and corporations around the globe. For more information about the Boston Foundation and TPI, visit tbf.org or call 617-338-1700.
  • Health of Boston 2014-2015 Martin J

    Health of Boston 2014-2015 Martin J

    Prepared by the Boston Public Health Commission Health of Boston 2014-2015 Martin J. Walsh, Mayor, City of Boston Paula Johnson, MD, MPH, Chair Board of the Boston Public Health Commission HuyHuy Nguyen,Nguyen, MD,MD, InterimInterim ExecutiveExecutive Director and Medical Director Building a Healthy Boston Boston Public Health Commission Health of Boston 2014-2015 Copyright Information All material contained in this report is in the public domain and may be used and reprinted without special permission; however, citation as to the source is appropriate. Suggested Citation Health of Boston 2014-2015: Boston Public Health Commission Research and Evaluation Office Boston, Massachusetts 2015 Acknowledgements This report was prepared by Snehal N. Shah, MD, MPH; H. Denise Dodds, PhD, MCRP, MEd; Dan Dooley, BA; Phyllis D. Sims, MS; S. Helen Ayanian, BA; Neelesh Batra, MSc; Alan Fossa, MPH; Shannon E. O’Malley, MS; Dinesh Pokhrel, MPH; Elizabeth Russo, MD, MPH; Rashida Taher, MPH; Sarah Thomsen- Ferreira, M.S.; Megan Young, MHS; Jun Zhao, PhD. The cover was designed by Lisa Costanzo, BFA. Health of Boston 2014-2015 Table of Contents Acknowledgements ........................................................................................................................................................................ 1 Introduction ...................................................................................................................................................................................... 5 Executive Summary ......................................................................................................................................................................
  • The Criminal Code of Finland (39/1889, Amendments up to 766/2015 Included)

    The Criminal Code of Finland (39/1889, Amendments up to 766/2015 Included)

    Translation from Finnish Legally binding only in Finnish and Swedish Ministry of Justice, Finland The Criminal Code of Finland (39/1889, amendments up to 766/2015 included) Chapter 1 - Scope of application of the criminal law of Finland (626/1996) Section 1 - Offence committed in Finland (1) Finnish law applies to an offence committed in Finland. (2) Application of Finnish law to an offence committed in Finland’s economic zone is subject to the Act on the Economic Zone of Finland (1058/2004) and the Act on the Environmental Protection in Navigation (300/1979). (1680/2009) Section 2 - Offence connected with a Finnish vessel (626/1996) (1) Finnish law applies to an offence committed on board a Finnish vessel or air- craft if the offence was committed (1) while the vessel was on the high seas or in territory not belonging to any State or while the aircraft was in or over such territory, or (2) while the vessel was in the territory of a foreign State or the aircraft was in or over such territory and the offence was committed by the master of the vessel or aircraft, a member of its crew, a passenger or a person who otherwise was on board. (2) Finnish law also applies to an offence committed outside of Finland by the master of a Finnish vessel or aircraft or a member of its crew if, by the offence, the perpetrator has violated his or her special statutory duty as the master of the vessel or aircraft or a member of its crew. Section 3 - Offence directed at Finland (626/1996) (1) Finnish law applies to an offence committed outside of Finland that has been directed at Finland.
  • Orbridge — Educational Travel Programs for Small Groups

    Orbridge — Educational Travel Programs for Small Groups

    For details or to reserve: wm.orbridge.com (866) 639-0079 APRIL 10, 2021 – APRIL 14, 2021 POST-TOUR: APRIL 14, 2021 — APRIL 16, 2021 CIVIL RIGHTS—A JOURNEY TO FREEDOM The Alabama cities of Montgomery, Birmingham, and Selma birthed the national leadership of the Civil Rights Movement in the 1950s and 1960s, when tens of thousands of people came together to advance the cause of justice against remarkable odds and fierce resistance. In partnership with the non-profit Alabama Civil Rights Tourism Association and in support of local businesses and communities, Orbridge invites you to experience the people, places, and events igniting change and defining a pivotal period for America that continues today. Dive deeper beyond history's headlines to the newsmakers, learning from actual foot soldiers of the struggle whose vivid and compelling stories bring a history of unforgettable tragedy and irrepressible triumph to life. Dear Alumni and Friends, Join us for an intimate and essential opportunity to explore the Deep South with an informative program that highlights America’s civil rights movement in Alabama. Historically, perhaps no other state has played as vital a role, where a fourth of the official U.S. Civil Rights Trail landmarks are located. On this five-day journey, discover sites that advanced social justice and shifted the course of history. Stand in the pulpit at Dexter Avenue King Memorial Baptist Church where Dr. Martin Luther King, Jr. preached, walk over the Edmund Pettus Bridge where law enforcement clashed with voting rights marchers, and gather with our group at Kelly Ingram Park as 1,000 or so students did in the 1963 Children’s Crusade.
  • TRULY GLOBAL Worldscreen.Com *LIST 0515 LIS 1006 LISTINGS 5/4/15 2:18 PM Page 2

    TRULY GLOBAL Worldscreen.Com *LIST 0515 LIS 1006 LISTINGS 5/4/15 2:18 PM Page 2

    *LIST_0515_LIS_1006_LISTINGS 5/4/15 2:17 PM Page 1 WWW.WORLDSCREENINGS.COM MAY 2015 L.A. SCREENINGS EDITION TVLISTINGS THE LEADING SOURCE FOR PROGRAM INFORMATION TRULY GLOBAL WorldScreen.com *LIST_0515_LIS_1006_LISTINGS 5/4/15 2:18 PM Page 2 Exhibitor directory 9 Story Media Group 1728 Multicom Entertainment Group 1735 A+E Networks 1712 NBCUniversal International Television Distribution 1460 America Video Films 1747 Nitro Group/Sony Music Latin 1719 American Cinema International 1707 Novovision 1736 Argentina Audiovisual 1742 Paramount Home Media Distribution 1202 Armoza Formats 1928 Pol-Ka Producciones 960 ATV 1715 Polar Star 1714 Azteca 1924 Programas Para Televisión 1740 BBC Worldwide 1918 RCN Televisión 1906 Beta Film 1923 RCTV International 1709 Beverly Hills Entertainment 1901 Record TV Network 1502 BluePrint Original Content 1713 Red Arrow International 702 Calinos Entertainment 1751 Reed MIDEM 1734 Caracol TV Internacional 1909 Rive Gauche Television 1725 CBS Studios International 1402 RMViSTAR/Peace Point Star 1724 CDC United Network 1910 Rose Entertainment 1560 Cisneros Media Distribution 1702 Sato Co. 1739 Content Television 1721 Smilehood Media 1748 DHX Media 1732 SnapTV 1750 Discovery Program Sales 1755 SOMOS Distribution 1602 Disney Media Distribution Latin America 1917 Sony Pictures Television 902 Dori Media Group 1160 Spiral International 702 Dynamic Television 1706 Starz Worldwide Distribution 1745 Eccho Rights 1759 STUDIOCANAL 1723 Endemol Shine Group 802 Telefe 1802 Entertainment Studios 1708 Telefilms 1902 FLY Content