binaryninja-api icon indicating copy to clipboard operation
binaryninja-api copied to clipboard

Published 20 hours ago verified publisher icon Vector35

Interactive IL Rewriting

Open mrphrazer opened this issue 3 years ago • 0 comments

It would be awesome to have the possibility to interactively manipulate IL expressions. Like adding additional expressions and rewriting or removing existing ones.

One use case would be to raise user-informed data flow to the next level by constraining individual variables or dynamically adding more analysis context. Another use case would be the simplification of complex HLIL expressions to ease decompilation.

Right now, those things can be realized using workflows, but they lack interactivity.

To give one specific example:

0 @ 00001173  int32_t rcx_3 = (not.d(arg2) & arg3) + arg2
1 @ 0000117b  int32_t rdi_3 = (not.d(rcx_3) & arg3) + rcx_3
2 @ 0000118c  return zx.q((not.d(arg3) & rdi_3) + (arg2 & rcx_3) + arg1 - (rcx_3 | rdi_3))

This code could be rewritten as:

0 @ 0000118c  return zx.q(arg1 + arg2 - arg3)

mrphrazer avatar Feb 01 '22 10:02 mrphrazer