GitHub - danielplohmann/smda: SMDA is a minimalist recursive disassembler librar...
source link: https://github.com/danielplohmann/smda
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
README.rst
SMDA
SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps. It is based on Capstone (http://www.capstone-engine.org/) and currently supports x86/x64 Intel machine code. As input, arbitrary memory dumps (ideally with known base address) can be processed. The output is a collection of functions, basic blocks, and instructions with their respective edges between blocks and functions (in/out). Optionally, references to the Windows API can be inferred by using the ApiScout method.
To get an impression how to work with the library, check the demo script:
- analyze.py -- example usage: perform disassembly and optionally store results in JSON to a given output path.
The code should be fully compatible with Python 2 and 3. Further explanation on the innerworkings follow in separate publications but will be referenced here.
Version History
- 2018-09-28: We now have functional PE/ELF loaders.
- 2018-07-09: Performance improvements.
- 2018-07-01: Initial Release.
Credits
Thanks to Steffen Enders for his extensive contributions to this project.
Pull requests welcome! :)
Recommend
-
169
Files Permalink Latest commit message...
-
126
Project in Maintenance Mode Only The project is in maintenance mode, meaning, changes are driven by contributed patches. Only bug fixes and minor enhancements will be considered. The Barcode Scanner app can no longer be published, so it's...
-
15
A F# to Jitted ASM / IL disassembler as a dotnet tool Getting Started Install fasm as a global dotnet tool dotnet tool install fasm -g or as a dotnet local tool dotnet new tool-manife...
-
18
mipsdump A functional MIPS disassembler written in F# that produces 1:1 assembly code that can be compiled with GNU's as. I did not like the output from mips-linux-gnu-objdump as it needed some corre...
-
22
Quickly build beautiful React apps. MUI is a simple and customizable component library to build faster, beautiful, and more accessible React applications. Follow your own design system, or start with
-
11
SAP BusinessObjects BI Platform 4.3 SP02 Available on SAP Cloud Appliance Library If you are looking forward to making yourself familiar with the latest capabilities and features of SAP BusinessObjects BI Platform 4.3, the...
-
13
Ceres Solver Ceres Solver is an open source C++ library for modeling and solving large, complicated optimization problems. It is a feature rich, mature and performant library which has been used in production at Google since 2010. Ceres S...
-
10
IBM Watson opens up AI opportunities for software vendors with embeddable libraries
-
13
FastKafka Effortless Kafka integration for your web services FastKafka is a powerful and easy-to-use Python library for building asynchronou...
-
10
vapor.js is a new amazing JavaScript framework. In just 0 lines of code it provides: Usage: <script src="vapor.js"></script> On modern browsers, you can inline it with a data URL:
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK