Tag Archives: Binary Analysis

Sploit : Go Package That Aids In Binary Analysis And Exploitation

Sploit is a Go package that aids in binary analysis and exploitation. The motivating factor behind the development of sploit is to be able to have a well designed API with functionality that rivals some of the more common Python exploit development frameworks while taking advantage of the Go programming language. Excellent cross-compiler support, goroutines, …

Continue reading “Sploit : Go Package That Aids In Binary Analysis And Exploitation”

Sojobo : A Binary Analysis Framework

Sojobo is an emulator for the B2R2 framework. It was created to easier the analysis of potentially malicious files. It is totally developed in .NET so you don’t need to install or compile any other external libraries (the project is self contained). With Sojobo you can: Emulate a (32 bit) PE binary Inspect the memory …

Continue reading “Sojobo : A Binary Analysis Framework”

B2R2 : A Collection of Algorithms, Functions And Tools For Binary Analysis

B2R2 is a collection of useful algorithms, functions, and tools for binary analysis written purely in F# (in .NET lingo, it is purely managed code). It has been named after R2-D2, a famous fictional robot appeared in the Star Wars. In fact, B2R2’s original name was B2-R2, but we decided to use the name B2R2 instead, because .NET does …

Continue reading “B2R2 : A Collection of Algorithms, Functions And Tools For Binary Analysis”

Angr : A Powerful & User-Friendly Binary Analysis Platform

Angr is a platform-agnostic binary analysis framework. It is a suite of Python 3 libraries that let you load a binary and do a lot of cool things to it: Disassembly and intermediate-representation lifting Program instrumentation Symbolic execution Control-flow analysis Data-dependency analysis Value-set analysis (VSA) Decompilation The most common angr operation is loading a binary: …

Continue reading “Angr : A Powerful & User-Friendly Binary Analysis Platform”

Triton – Dynamic Binary Analysis (DBA) Framework

Triton is a Dynamic Binary Analysis (DBA) framework. It provides internal components like a Dynamic Symbolic Execution (DSE) engine, a Taint Engine, AST representations of the x86 and the x86-64 instructions set semantics, SMT simplification passes, an SMT Solver Interface and, the last but not least, Python bindings. Based on these components, you are able …

Continue reading “Triton – Dynamic Binary Analysis (DBA) Framework”