PyDA
PyDA copied to clipboard
jchristman
Implement Searching
Give the ability to search by bytes, opcodes, text, immediate, comment, etc.
Can hook the rest of these in later - but the ability to find by address is there. Therefore, it is possible to hook in a search function for all of these when we grab the whole line it's on. This is 90% done
Subtasking: Give the user the ability to search for instruction sequences. Could be really helpful for patching away anti-disassembly tricks. Like the one featured here: http://jgeralnik.github.io/writeups/2014/06/12/rarara/
In addition, you should be able to search for sequences of bytes to use for ROP. Maybe add an integrated ROP gadget finder?
On Fri, Jun 20, 2014 at 7:47 AM, direwolf314 [email protected] wrote:
Subtasking: Give the user the ability to search for instruction sequences. Could be really helpful for patching away anti-disassembly tricks. Like the one featured here: http://jgeralnik.github.io/writeups/2014/06/12/rarara/
— Reply to this email directly or view it on GitHub https://github.com/suntzuII/PyDA/issues/19#issuecomment-46674230.
We could probably easily integrate the actual ROPgadget tool - it is also based on capstone at this point. We should probably contact the author and ask permission though...
Sent from my iPhone
On Jun 20, 2014, at 9:28, stealthpants [email protected] wrote:
In addition, you should be able to search for sequences of bytes to use for ROP. Maybe add an integrated ROP gadget finder?
On Fri, Jun 20, 2014 at 7:47 AM, direwolf314 [email protected] wrote:
Subtasking: Give the user the ability to search for instruction sequences. Could be really helpful for patching away anti-disassembly tricks. Like the one featured here: http://jgeralnik.github.io/writeups/2014/06/12/rarara/
— Reply to this email directly or view it on GitHub https://github.com/suntzuII/PyDA/issues/19#issuecomment-46674230.
— Reply to this email directly or view it on GitHub.