radare
play

radare Easing binary analysis for fun and profit Overview IO with - PowerPoint PPT Presentation

Apr 02, 2024 •560 likes •695 views

radare Easing binary analysis for fun and profit Overview IO with plugins Basic file input/output access wrapped with plugins: Posix IO W32 IO Remote TCP IO EWF (Encase disk images) Debugger Haret ... Hexadecimal

  1. radare Easing binary analysis for fun and profit

  2. Overview

  3. IO with plugins Basic file input/output access wrapped with plugins: ● Posix IO ● W32 IO ● Remote TCP IO ● EWF (Encase disk images) ● Debugger ● Haret ● ...

  4. Hexadecimal editor ● The radare shell interprets simple commands to move around the binary file and perform operations like write bytes, seek, dump blocks in different formats, etc.. ● Supports perl and python scripting. ● Zoom mode to have a whole overview of entropy, printable chars, flags, etc.. ● Read, write, compare, copy/paste data. ● Shell integration. Supports pipes, shell escapes, .. ● Visual mode with simple keybindings

  5. Debugger ● Using the debugger IO plugin it's possible to natively debug programs on UNIX systems or Windows(R). ● Supports raw memory access like reading a plain file. ● Child filedescriptor manipulation ● Context dump/restore. Allows stepbacks ● Breakpoints(soft/hard), Watchpoints with expressions ● Raw DRX access ● Syscall injection and proxying ● Thread and fork control ● Execution trace ● Signal handling and manipulation ● Syscall tracing ● Mmap files on child's memory

  6. Data analysis ● Radare comes with different tools to analyze binaries: ● rsc rfile-foreach – runs 'file' program on each offset of the file to find file headers ● bindiff – find binary differences between two files ● bytediff- “” ● hasher – multiple algorithms , hash per pieces, entropy, hamming distance ,... ● Interprets data blocks as C data structures with 'rsc spcc'. GML graph generation from an ELF

  7. Exploit framework ● Radare comes with some tools to ease the development of exploits or low level code snippets to patch binaries. ● Rasm – Radare Assembler – portable patch assembler (most common assembly opcodes) for x86, arm, ppc and java. ● Rasc – Radare ShellCode – metasploit-like tool with syscall-proxying and hardcoded database of shellcodes. Prefixing/appending traps, nops, numeric series or 'A's. Pid:// - Attach to programs and analyze crash backtraces.

  8. Disassembler ● Radare supports disassembling and code analysis for intel, arm, ppc and Java. ● Supports intel, at&t and pseudocode disassembling ● The code analysis structures can be compared to bindiff code flows. ● Allows to add inline comments, allows to fake the base address to map memory addresses with file ones. ● Can mix dwarf information, and symbol information. ● ObjDump, Nas, Gas integration

  9. Search Engine Supports multiple binary keyword search: ● Range limited searches ● string, wide char string, hexpair, opcodes, .. ● execute commands for each result ● Supports binary masks per keyword ● Supports pseudo-regular expression ● Find expanded AES keys

  10. GUI ● A minimalistic C based Gtk+ frontend with VTE is currently used. ● A native Vala Gtk with Cairo is under development. ● Code graphs to graphically navigate the program.

  11. Other stuff ● rabin allows to get information from ELF, PE, CLASS files ● Read WCE/WM device's memory with HARET plugin. ● Find code xrefs on raw files for x86, ppc, arm ● Data Carver ● Assembly opcodes dictionary (rsc adict) ● Commandline assembler/disassembler (rsc asm/dasm) ● Automatization tasks with shellscripts

  12. Q/A? || Cya! http://radare.nopcode.org/

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Reversing Java (Malware) with Radare Adam Pridgen April 2014 About me Rice SecLab, a PhD

Reversing Java (Malware) with Radare Adam Pridgen April 2014 About me Rice SecLab, a PhD

Reversing Java (Malware) with Radare Adam Pridgen April 2014 About me Rice SecLab, a PhD Student Independent InfoSec Consultant/Contractor Overview Typical Java Reversing Talk o Decompile Code o Make Changes o Recompile and Win?

868 views • 66 slides
Programming for Engineers File Handling ICEN 200 Spring 2018 Prof. Dola Saha 1 Files in C

Programming for Engineers File Handling ICEN 200 Spring 2018 Prof. Dola Saha 1 Files in C

Programming for Engineers File Handling ICEN 200 Spring 2018 Prof. Dola Saha 1 Files in C Storage of data in variables and arrays is temporary such data is lost when a program terminates. Files are used for permanent retention of

802 views • 33 slides
Process Address Spaces and Binary Formats Don Porter CSE 506 Housekeeping Lab

Process Address Spaces and Binary Formats Don Porter CSE 506 Housekeeping Lab

Process Address Spaces and Binary Formats Don Porter CSE 506 Housekeeping Lab deadline extended to Wed night (9/14) Enrollment finalized if you still want in, email me All students should have VMs at this point

961 views • 50 slides
LECTURE 29 REGULAR EXPRESSIONS 2; ENCODINGS AND BINARY FILES MCS 260 Fall 2020 David Dumas /

LECTURE 29 REGULAR EXPRESSIONS 2; ENCODINGS AND BINARY FILES MCS 260 Fall 2020 David Dumas /

LECTURE 29 REGULAR EXPRESSIONS 2; ENCODINGS AND BINARY FILES MCS 260 Fall 2020 David Dumas / REMINDERS I hope you have worked on Project 3 Quiz 10 due Monday (Nov 2) Nov 3: No discussions Nov 5: Discussion converted to TA office hours /

330 views • 12 slides
BINSEC: Binary-level Semantic Analysis to the Rescue S ebastien Bardin joint work with

BINSEC: Binary-level Semantic Analysis to the Rescue S ebastien Bardin joint work with

BINSEC: Binary-level Semantic Analysis to the Rescue S ebastien Bardin joint work with Richard Bonichon, Robin David, Adel Djoudi, Benjamin Farinier, Josselin Feist, Laurent Mounier, Marie-Laure Potet, Thanh Dihn Ta, Franck V edrine CEA

1.27k views • 61 slides
Week 12 - Monday What did we talk about last time? Exam 2! Before that: Review

Week 12 - Monday What did we talk about last time? Exam 2! Before that: Review

Week 12 - Monday What did we talk about last time? Exam 2! Before that: Review Before that: Binary search trees Started file I/O The key to performance is elegance, not battalions of special cases. The terrible

567 views • 32 slides
CSEE 3827: Fundamentals of Computer Systems Instruction Set Architectures / MIPS and the rest

CSEE 3827: Fundamentals of Computer Systems Instruction Set Architectures / MIPS and the rest

CSEE 3827: Fundamentals of Computer Systems Instruction Set Architectures / MIPS and the rest of the semester (software) Source code (e.g., *.java, *.c) Compiler MIPS instruction set architecture Application executable Single-cycle

694 views • 66 slides
Java I/O Department of Computer Science University of Maryland, College Park Storing Data

Java I/O Department of Computer Science University of Maryland, College Park Storing Data

CMSC 132: Object-Oriented Programming II Java I/O Department of Computer Science University of Maryland, College Park Storing Data Approaches to store file data Text files Data represented in human-readable form Example: Java

401 views • 9 slides
MATLAB Basics: Data Files save filename var1 var2 binary save homework.mat x y

MATLAB Basics: Data Files save filename var1 var2 binary save homework.mat x y

MATLAB Basics: Data Files save filename var1 var2 binary save homework.mat x y Input/Output Functions ascii save x.dat x ascii load filename Selim Aksoy binary load filename.mat Bilkent University ascii

243 views • 5 slides
CS 2334: Lab 12 Graphics and Binary File I/O Menus Attached to a Frame or an entire program

CS 2334: Lab 12 Graphics and Binary File I/O Menus Attached to a Frame or an entire program

CS 2334: Lab 12 Graphics and Binary File I/O Menus Attached to a Frame or an entire program Drop down menus: easy access to high-level commands Not uncommon to have at least a File menu Andrew H. Fagg: CS2334: Lab 12 2 Menus

675 views • 22 slides
Introduction to Unix http://linux.oreilly.com/ VI, March 2005 Page 1 Unix tutorial Outline

Introduction to Unix http://linux.oreilly.com/ VI, March 2005 Page 1 Unix tutorial Outline

Unix tutorial Introduction to Unix http://linux.oreilly.com/ VI, March 2005 Page 1 Unix tutorial Outline Basic background in Unix structure Directories and files I (listing, navigation, filenames) Directories and files II

359 views • 19 slides
Tools for viewing and editing binary data Eric McCreath cat and less The cat command will

Tools for viewing and editing binary data Eric McCreath cat and less The cat command will

Tools for viewing and editing binary data Eric McCreath cat and less The cat command will concatenate a list of files and print the result to standard output. It provides a quick way of viewing the contents of a single ASCII file. In the

112 views • 10 slides
+ Projects: Developing an OS Kernel for x86 Introduction + The boot process ! After the power

+ Projects: Developing an OS Kernel for x86 Introduction + The boot process ! After the power

CPSC 410/611: Operating Systems Projects, Introduction + Projects: Developing an OS Kernel for x86 Introduction + The boot process ! After the power button has been pressed ! Power supply certifies that can supply the correct amount of

349 views • 6 slides
Streams and File I/O Fundamentals of Computer Science Outline Overview of Streams and File

Streams and File I/O Fundamentals of Computer Science Outline Overview of Streams and File

Streams and File I/O Fundamentals of Computer Science Outline Overview of Streams and File I/O Buffering Text File I/O Binary File I/O Streams Stream : an object that either delivers data to its destination (screen, file,

770 views • 33 slides
Guillaume VINET 19th May 2019 1 stress WBC-based solutions, challenging practical realisation,

Guillaume VINET 19th May 2019 1 stress WBC-based solutions, challenging practical realisation,

Guillaume VINET 19th May 2019 1 stress WBC-based solutions, challenging practical realisation, to exploitable faulty computations, include: and able to affect large range of instructions multiple faults Binary analysis: dynamic fault

920 views • 71 slides
C: File I/ O What we have done so far We have been reading/ writing files using stdin/

C: File I/ O What we have done so far We have been reading/ writing files using stdin/

C: File I/ O What we have done so far We have been reading/ writing files using stdin/ stdout with the redirect operator stdin: Standard input stream stdout: Standard output stream e.g. $ myApplication <

508 views • 8 slides
Assemblers, Linkers, and Loaders Hakim Weatherspoon CS 3410 Computer Science Cornell

Assemblers, Linkers, and Loaders Hakim Weatherspoon CS 3410 Computer Science Cornell

Assemblers, Linkers, and Loaders Hakim Weatherspoon CS 3410 Computer Science Cornell University [Weatherspoon, Bala, Bracy, and Sirer] Big Picture: Where are we going? int x = 10; C x0 = 0 x = 2 * x + 15; compiler x5 = x0 + 10 addi x5,

778 views • 39 slides
CS 241 Data Organization Uuencoding January 30, 2018 What is uuencode ? uuencode name is

CS 241 Data Organization Uuencoding January 30, 2018 What is uuencode ? uuencode name is

CS 241 Data Organization Uuencoding January 30, 2018 What is uuencode ? uuencode name is derived from Unix-to-Unix encoding Binary to text encoding used to send binary files via email and newsgroups uudecode recreates original

310 views • 5 slides
CS 31: Intro to Systems Binary Representation Martin Gagn Swarthmore College January 19, 2017

CS 31: Intro to Systems Binary Representation Martin Gagn Swarthmore College January 19, 2017

CS 31: Intro to Systems Binary Representation Martin Gagn Swarthmore College January 19, 2017 Today Number systems and conversion Data storage How many unique values can we represent with 9 bits? One bit: two values (0 or 1)

944 views • 51 slides
Portable data format by example: netcdf Latin American Introductory School on Parallel Programming

Portable data format by example: netcdf Latin American Introductory School on Parallel Programming

Portable data format by example: netcdf Latin American Introductory School on Parallel Programming and Parallel Architecture for High Performance Computing William Oquendo, woquendo@gmail.com Outline A simple example : a 2D matrix Saving

528 views • 36 slides
Reducing Energy Usage Through a Novel File Synchronization Algorithm Frederic Sala LORIS Lab,

Reducing Energy Usage Through a Novel File Synchronization Algorithm Frederic Sala LORIS Lab,

Reducing Energy Usage Through a Novel File Synchronization Algorithm Frederic Sala LORIS Lab, UCLA Joint work with: Nicolas Bitouz e (UCLA) Clayton Schoeny (UCLA), S. M. Sadegh Tabatabaei Yazdi (Qualcomm), Lara Dolecek (UCLA) Laboratory

1.23k views • 88 slides
Administrative Notes February 9, 2017 Feb 10: Project proposal resubmission (optional)

Administrative Notes February 9, 2017 Feb 10: Project proposal resubmission (optional)

Administrative Notes February 9, 2017 Feb 10: Project proposal resubmission (optional) Feb 13: Art and Images reading quiz on Connect Feb 17: In the News call #2 Computational Thinking The image part with relationship ID rId20

782 views • 34 slides
CS 240 Programming in C Introduction September 4, 2019 Haoyu Wang UMass Boston CS 240

CS 240 Programming in C Introduction September 4, 2019 Haoyu Wang UMass Boston CS 240

CS 240 Programming in C Introduction September 4, 2019 Haoyu Wang UMass Boston CS 240 September 4, 2019 1 / 24 Schedule Course Introduction 1 Programming Overview 2 History of C Language 3 Editor 4 Intro of Linux Command-line 5

483 views • 24 slides
The Unix I/O Philosophy The Unix I/O Philosophy CS 105 Tour of the Black Holes of

The Unix I/O Philosophy The Unix I/O Philosophy CS 105 Tour of the Black Holes of

The Unix I/O Philosophy The Unix I/O Philosophy CS 105 Tour of the Black Holes of Computing Before Unix, doing I/O was a pain

364 views • 8 slides

More recommend