ProHoster > Blog > internet nhau > Kuburitswa kweiyo sisitimu reverse engineering Rizin 0.4.0 uye GUI Cutter 2.1.0

Kuburitswa kweiyo sisitimu reverse engineering Rizin 0.4.0 uye GUI Cutter 2.1.0

Kuburitswa kweiyo sisitimu ye reverse engineering Rizin uye yakabatana graphical shell Cutter yakaitika. Iyo Rizin purojekiti yakatanga seforogo yeRadare2 chimiro uye yakaenderera mberi nekusimudzira kwayo nekusimbisa kune iri nyore API uye yakatarisana nekuongororwa kwekodhi pasina forensics. Kubva paforogo, purojekiti yachinja kune imwe nzira yakasiyana yekuchengetedza zvikamu ("mapurojekiti") muchimiro chenyika chinoenderana nekuenzanisa. Mukuwedzera, iyo nheyo yekodhi yakagadziridzwa zvakanyanya kuti iite kuti iwedzere kuchengetedzwa. Iyo kodhi yeprojekiti yakanyorwa muC uye inogoverwa pasi pe LGPLv3 rezinesi.

Iyo Cutter graphical shell yakanyorwa muC++ uchishandisa Qt uye yakagoverwa pasi peGPLv3 rezinesi. Cutter, seRizin pachayo, yakanangana nekuita reverse engineering zvirongwa mumashini kodhi kana bytecode (semuenzaniso JVM kana PYC). Kune decompilation plugins yeCutter/Rizin yakavakirwa paGhidra, JSdec uye RetDec.

Kuburitswa kweiyo sisitimu reverse engineering Rizin 0.4.0 uye GUI Cutter 2.1.0

Mukuburitswa kutsva:

  • Yakawedzerwa rutsigiro rwekugadzira FLIRT siginecha, iyo inogona kutakurwa muIDA Pro;
  • Iyo package inosanganisira dhatabhesi yemasiginecha akajairwa emaraibhurari anozivikanwa;
  • Kuvandudzwa kucherechedzwa kwemabasa uye mitsetse yemafaira eexecutable muGo for x86/x64/PowerPC/MIPS/ARM/RISC-V;
  • Mutauro mutsva wekumiririra wepakati RzIL wakavakirwa paBAP Core Theory (mutauro wakafanana neSMT) waitwa;
  • Yakawedzera kugona kuona otomatiki kero yekutanga ye "mbishi" mafaera;
  • Tsigiro yekurodha memory "snapshots" yakavakirwa paWindows PageDump/Minidump mafomati mudebug mode yaitwa;
  • Basa rakakwenenzverwa nemadebugger ari kure anoenderana neWinDbg/KD.
  • Parizvino, tsigiro yeARMv7/ARMv8, AVR, 6052, brainfuck architecture yakaendeswa kuRzIL itsva. Nekuburitswa kunotevera kwakarongwa kupedzisa shanduro yeSuperH, PowerPC uye zvishoma x86.

Zvakare zvakaburitswa:

  • rz-libyara - plugin yeRizin / Cutter kutsigira kurodha nekugadzira masiginecha muYara fomati;
  • rz-libdemangle - zita rekuita decoding raibhurari yeC++/ObjC/Rust/Swift/Java mitauro;
  • rz-ghidra - plugin yeRizin / Cutter yekuparara (yakavakirwa paGhidra C ++ kodhi);
  • jsdec - plugin yeRizin / Cutter yekubvisa iyo yekutanga budiriro;
  • rz-retdec - plugin yeRizin / Cutter yekuparara (yakavakirwa paRetDec);
  • rz-tracetest - chishandiso chekutarisa kurongeka kweshanduro yemuchina kodhi muRzIL nekuenzanisa neyekutevedzera yekutevedzera (yakavakirwa paQEMU, VICE).

Source: opennet.ru

Voeg