ctf_import Logo

ctf_import

0
Free
Visit Website

A small library that allows you to run basic functions from stripped binaries cross platform. This library is designed for you to be able to quickly call functions from a stripped binary. All you need is the file name, the function offset, and the function signature. You can get these by reverse engineering the binary in IDA or Binary Ninja. void *import(char *file, size_t offset) #include "ctf_import.h" int main() { int (* fib)(int); // a.out is a binary with a fibonacci function at offset 0xf00 fib = (int (*)(int)) import("a.out", 0xf00); printf("%d %d %d %d %d\n", fib(1), fib(2), fib(3), fib(4), fib(5)); } To compile: $ gcc example.c ctf_import.c -o example $ ./example > 1 1 2 3 5 Notes: Although the code will run "cross-OS", it will not run cross architecture. Additionally, this does not handle syscalls and anything that interacts with globals.

FEATURES

ALTERNATIVES

Binary Ninja is an interactive decompiler, disassembler, debugger, and binary analysis platform with a focus on automation and a clean GUI.

VxSig is a tool to automatically generate AV byte signatures from similar binaries.

A tool to find XSS vulnerabilities in web applications

A Python script for scanning data within an IDB using Yara

A command-line program for finding secrets and sensitive information in textual data and Git history.

Explores malware interaction with Windows API and methods for detection and prevention.

Collection of slides, materials, demos, crackmes, and writeups from r2con-2017 conference.

Educational resources for reverse engineering tutorials by lena151.

PINNED