Exetools  

Go Back   Exetools > General > Community Tools

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 12-14-2022, 01:40
elephant elephant is offline
Friend
 
Join Date: Feb 2005
Posts: 89
Rept. Given: 2
Rept. Rcvd 26 Times in 13 Posts
Thanks Given: 130
Thanks Rcvd at 107 Times in 37 Posts
elephant Reputation: 26
GhidraEmu: plugin to deal with native pcode emulation

This Ghidra plugin allows you to easily deal with native pcode emulation. No scripts anymore, just use it from Ghidra. It can be useful for working with a variety of exotic processors, support for which is not implemented in common emulators.

If the processor/vm supported by Ghidra for reverse engineering — it can be emulated!

What can it do

In fact, the plugin is an extended wrapper around the classes inside the package ghidra.app.emulator. Here is what has been implemented:
  • Works with all architectures that Ghidra supports, so you can add exotic processors and emulate the such programs
  • CPU context, stack, and heap emulation
  • Applying patched bytes through Ghidra GUI to influence the course of emulation
  • Breakpoints to control emulation process
  • Displaying of changed bytes during emulation in Ghidra's ByteViewer
  • Hook some libc functions (but it is still poor)

Installation
  • Download Release version of extension and install it in Ghidra File → Install Extensions...
  • Use gradle to build extension: GHIDRA_INSTALL_DIR=${GHIDRA_HOME} gradle and use Ghidra to install it: File → Install Extensions...
  • In CodeBrowser go to File → Configure → Experimental and select checkbox.


https://github.com/Nalen98/GhidraEmu
Reply With Quote
The Following 2 Users Say Thank You to elephant For This Useful Post:
sh3dow (12-14-2022), WRP (12-14-2022)
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



All times are GMT +8. The time now is 17:03.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( 1998 - 2024 )