Menu
▾
▴
Re: [Capstone-users] Binary files parser
|
From: Nguyen A. Q. <aq...@gm...> - 2014-07-23 12:59:55
|
On Wed, Jul 23, 2014 at 5:20 PM, Moshe Kravchik <mkr...@ho...> wrote: > Hi, > > Could you let me know what is the best way to have a cross platform binary > files parser, so I can open any of ELF, PE, Mach-O, find the code and then > use capstone to process it? I haven't seen this kind of functionality > provided by capstone itself... > yes, Capstone is designed to be simple and only does one work (and tries to do that well): Capstone only (and will only) focus on disassembling binary code. it is your job to get the code out yourself to feed that to Capstone. on how to extract code from different binary formats, you can take a look at ROPgadget (https://github.com/JonathanSalwan/ROPgadget): this tool also has to take the code out of executable files to build ROP gadgets. thanks, Q |
