Decompiling is very useful for understanding srtipped binaries, most dissasemblers like IDA or Hopper have a plugin for decompiling binaries, generating a c like pseudocode.
Static analysis, is very useful in most of cases, specially when the binary is not so big, or when you just have an address where to start to analyze. But some algorithms will be learned in less time by dynamic analysis like tracing or debugging.
In cookiemonsters team, we are working on several tracers with different focus, but all of them mix the concept of tracing and decompiling to generate human-readable traces.
S2 is my tracer & decompiler plugin for gdb, very useful for ctfs.
Some of the features are:
- signed/unsigned detecion
- conditional pseudocode (if)
- syscall resolution
- unroll bucles
- used registers values
- mem states
- strings
- logging
More info
- Hacking Jailbreak
- Pentest Tools
- Pentest News
- Pentest Gear
- Hackerrank
- Pentest Software
- Pentest Online Course
- Pentest Book
- Hacking Software
- Hacking Device
- Pentest Devices
- Pentesting Tools
- Hacking The System
- Pentest Online Course
- Pentest Web Application
- Pentest Tutorial
- Pentest Android App
- Hackintosh
- Pentest Linux
Geen opmerkings nie:
Plaas 'n opmerking