qira

qira copied to clipboard

Full Static Backend with BAP?

4

Now that BAP supports a fair number of architectures (ARM, x86, x86-64) and file formats (ELF, MachO, COFF), it is becoming increasingly more usable for QIRA. BAP implements many of...

tim-becker

WHY IS AT&T SYNTAX BACK?

1

x86-64 is unreadable shit, I tried a bit to use trunk QIRA for bctf, mostly unusable still. I see a few things tagged QIRA v1.2, which is a start, but...

geohot

Integrate BIL validation into test framework

1

The changes in https://github.com/tim-becker/qira/tree/concrete_execution add a concrete executor for the BAP IL to QIRA. Although initially meant to find bugs in BAP's lifter, the validation actually revealed subtle bugs in...

tim-becker

geohot

keep names in sync with ida using the ida plugin

4

consider switching to the python ida plugin only as well

geohot

Support thumb bit recovery in static

2

We should be able to track the thumb bit statically with some success, like IDA does. The current thumb hacks are brittle and don't really belong in QIRA.

nedwill

bap-server: "bind" failed: Address already in use

4

why is this happening if I rerun qira?

geohot

please somebody write struct and stack frame support

1

Outlined a way to do it here. I will be so happy https://github.com/BinaryAnalysisPlatform/qira/wiki/A-starting-point-for-struct-support-in-QIRA

geohot

plt names should be in static

2

One of the things IDA does best is propagate all the got names back to the plt, and make functions much more readable. So for a concrete example qira tests_manual/helloc...

geohot

I'm still using QIRA 1.0 in CTFs

7

There's a lot of stuff broken in trunk, in the middle of codegate now, but why????

geohot