Skip to content

yannayl/drunpack

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
examples
examples
 
 
.gitignore
.gitignore
 
 
CMakeLists.txt
CMakeLists.txt
 
 
README.md
README.md
 
 
unpack.c
unpack.c
 
 

Repository files navigation

DrUnpack

DynamoRio based simple & generic unpacker.

DrUnpack inspects the memory of process during execution and dump suspicious memory regious. Executed memory is considered suspicious if it's writable or not mapped to any excutable (also libraries) file.

Requirements

Build

Linux

cd $PROJECT
mkdir build
cd build
cmake -DDynamoRIO_DIR=$DYNAMORIO_HOME/cmake ..
make

Usage

drrun -c $PROJECT/build/bin/libunpack.so -- /path/to/binary The client creates dump for each suspicious memory being executed.

Platforms

Theoretically, should support all platforms supported by DynamoRio.

Practically, it's been tested on:

  • Linux (ubuntu)

About

DynamoRio based unpacker

Resources

Readme
Activity

Stars

2 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages