angr
decompiler-explorer
Our great sponsors
angr | decompiler-explorer | |
---|---|---|
13 | 18 | |
7,216 | 1,814 | |
1.8% | 3.3% | |
9.7 | 8.4 | |
2 days ago | 6 days ago | |
Python | Python | |
BSD 2-clause "Simplified" License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
angr
-
30 Years of Decompilation and the Unsolved Structuring Problem: Part 1
That's awesome! That's exactly how modern decompilers deal with a special type of goto occurrence. They reduce gotos (or completely eliminate them) by introducing a `while(true)` loop, followed by corresponding `continue` and `breaks`... we all, of course, know that `while(true)` did not exist in the source, but it's a nice hack!
We even do this in the angr decompiler, found here: https://github.com/angr/angr/blob/8e48d001e18a913ecd4ed2e995...
- Ask not what the compiler can do for you
-
The Full Story of Large Language Models and RLHF
One would hope browser and OS vendors would use AI to remediate vulnerabilities but vast majority of software vendors won't ever use it.
Also, automated vulnerability finding is very much real and already used today. This isn't something that has just become viable via LLMs, but I guess LLMs can enhance it:
https://github.com/angr/angr
-
Synthesizing optimal 8051 code with an SMT solver (2020)
Check out angr [1], a symbolic execution engine, and claripy [2], its frontend to SMT solvers like z3.
[1] https://angr.io
[2] https://api.angr.io/claripy.html
-
Any standard algorithms for parsing (disassembling) machine code?
BAP (https://github.com/binaryanalysisplatform/bap), angr (https://angr.io/) and others already do what you're asking for as more purpose-built solutions for dynamic analysis. Angr specifically in python.
-
Can anyone explain to me how to find main function in elf file?
As /u/hkei noted, it's actually quite difficult to do in general, and usually requires some kind of heuristic. For example, see https://github.com/dyninst/dyninst/blob/v12.1.0/dyninstAPI/src/image.C#L476. Full disclosure, I am a Dyninst developer. There is also the python-based angr that might be more amenable to a one-off solution.
-
We are Legitimate Business Syndicate, DEF CON CTF Organizers 2013-2017, Ask Us Anything
I think there's a lot of promise in automation that's been spun off from the CTF community. Angr and Binary Ninja are both very much spinoffs from contest hacking, and are pretty great for helping a skilled hacker find flaws in software.
-
Awesome Penetration Testing
angr - Platform-agnostic binary analysis framework.
-
Programming in Z3 by learning to think like a compiler
angr uses z3.
https://github.com/angr/angr
Supposedly, the DoD has used angr for some use cases.
-
What's a good technology to introduce to my company?
Try using angr to automate bug finding
decompiler-explorer
-
Dogbolt Decompiler Explorer
Can I just say, thanks to the person who posted this for waiting until this week to do so. (Side note: I suspect it was due to the recent coverage from C++ Weekly which is a great resource: https://www.youtube.com/watch?v=h3F0Fw0R7ME)
As recently as last week we had some horrible performance problems but it looks like the queue (https://dogbolt.org/queue) is mostly still fine! Other than the long pole of a few of the decompilers being backed up, things are humming along quite smoothly! Josh + Glenn have done some great work on it! (https://github.com/decompiler-explorer/decompiler-explorer/c...)
-
Revamping Binary Analysis with Sampling and Probabilistic Inference
(dogbolt.org, not .com by the way.)
-
IDA Pro 8.3 released.
Also check out this comparison tool https://dogbolt.org/ (https://github.com/decompiler-explorer/decompiler-explorer) - it's a clear illustration that tool effectiveness is highly dependent on the specific binary input and task complexity
-
How to determine original language an .exe was coded with?
The c++-looking code you see is rebuild from the disasm, e.g for clarity, it's supposed to make the low level code more readable, so it does not mean anything about the language. (aside: several other product do that, see https://dogbolt.org/)
- MCU Firmware unpacking, decrypting? Find Security Keys, Checksums, Memory Map
- IDA Pro 8.0 released.
- Decompiler Explorer – Compare tools on the forefront of static analysis from your web browser
What are some alternatives?
qiling - A True Instrumentable Binary Emulation Framework
ghidrecomp - Python Command-Line Ghidra Decompiler
pwntools - CTF framework and exploit development library
binaryninja-api - Public API, examples, documentation and issues for Binary Ninja
RustScan - 🤖 The Modern Port Scanner 🤖
ghidra - Ghidra is a software reverse engineering (SRE) framework
frontier-silicon-firmwares - Frontier silicon internet radio firmware binaries
mdec - Decompilation as a Service. Explore multiple decompilers and compare their output with minimal effort. Upload binary, get decompilation.
CrossHair - An analysis tool for Python that blurs the line between testing and type systems.
gef - GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux
bap - Binary Analysis Platform
ghidra-fr60 - Ghidra Plugin for Fujitsu FR60 Processors. Focused on DVRP's MB91302A in the Sony PSX.