Skip to content

Gozihr/Disassembler

BranchesTags

Repository files navigation

Disassembler

This is hopefully the start of a really awesome custom tool for my own personal RE work.

Code status

codecov

Demo

Binary Disassemble

Binary Diff

Build Instructions

cmake -B build
make

Build with Ninja

cmake -G Ninja -B build
ninja -C./build
# or if you just want to build the tests
ninja XED_TEST Disassembler_TEST

Building on Windows

  • Using Ninja
cmake -GNinja -Bbuild
ninja -C./build
  • Using MSBUILD
cmake -B build
msbuild build\Disassembler.sln -t:Build -p:Configuration=Release

Dependencies

  • Catch2
  • CmdParser
  • Capstone
  • XED (optional)
  • LIEF

Testing Dependencies

  • nasm
  • mingw-w64

Installing Test Dependencies

  • Ubuntu : apt-get install nasm mingw-w64
  • MacOS : brew install nasm mingw-w64
  • Windows: choco install nasm mingw

Usage

  • echo 0x55488b05b8130000 | xargs ./disasm --raw -a x86_64 -i
  • ./disasm --raw -a x86_64 -i 0x55488b05b8130000
  • ./disasm --raw -a x86_64 -i 55488b05b8130000
  • ./disasm --raw -a x86_64 -i "0x 55 48 8b 05 b8 13 00 00"
  • ./disasm --raw -a x86_64 -i "55 48 8b 05 b8 13 00 00"
  • ./disasm --binary -f /bin/ls

Dynamic Lib Usage

  • ./disasm --binary -f src/test/hello.linux.out -d build/plugins/xedPlugin/libxedPlugin.so
  • ./disasm --raw -a x86_64 -i 0x55488b05b8130000 -d build/plugins/xedPlugin/libxedPlugin.so

Docker Build & Run

  • build: docker build -t disassembler:latest .
  • run: docker run --name test_vm -it disassembler:latest

Setup Clang Tidy

On MacOS

ln -s "$(brew --prefix llvm)/bin/clang-tidy" "/usr/local/bin/clang-tidy"
ln -s "$(brew --prefix llvm)/bin/clang-apply-replacements" "/usr/local/bin/clang-apply-replacements"
ln -s "$(brew --prefix llvm)/bin/run-clang-tidy" "/usr/local/bin/run-clang-tidy"

Run Clang Tidy

After running cmake, the build dir will have a compile_commands.json file. Thats all you need to run run-clang-tidy.py.

run-clang-tidy -p build/ -header-filter='.*' -fix -format

Debuging

  • Switch compiler
    • in the process of building this project i've found differences between clang and gcc. First step I try is to swap the compilers
    • cmake -D CMAKE_C_COMPILER=clang -D CMAKE_CXX_COMPILER=clang++ -B build
  • Build with Debug symbols
    • If you need unoptimized replace -O3 with -O0 whereever you find CMAKE_CXX_FLAGS. If you don't just run below
    • cmake -DCMAKE_BUILD_TYPE=Debug -B build
  • Check for Dwarf Version
    • readelf --debug-dump=info build/src/cli/disasm | grep "Version" | uniq

Supported Platform(s)

  • OS X
  • Linux
  • Windows

Coming Soon

  • flags
  • input/output files
    • input
    • output
  • elf/pe/mach-O
    • mach-O
    • elf
    • pe
  • add support for more disassemblers (compare output)
    • XED
  • Allow for dynamic loading of disassemblers (plugin model)

About

No description or website provided.

Topics

reverse-engineering disassemblers

Resources

Readme

License

BSD-3-Clause license
Activity
Custom properties

Stars

3 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases 2

Gozihr-0.0.2 Latest
Aug 21, 2022
+ 1 release

Packages

No packages published

Languages