-
For jumps like this: `jmp dword [ecx*4 + 0x10003020] `
aka UJMP
-
See https://github.com/sushant94/esil-tests
cc @condret @ret2libc @sivaramaaa
-
-
Basically printing a structured JSON exposing all the info of n instruction in tree form,
this way we can expose 'capstone-like' struct but for the ESIL representation. This will allow to expose the …
-
dtc, at, dt, and the other ones must be redesigned to work together in a better way
-
-
To make ESIL API more consistent and ease the migration from ESIL to RZIL.
See:
- `librz/core/cmd_analysis.c`
- `librz/core/cmd_descs/cmd_analysis.yaml`
-
- [x] `esil.os` config-var
- [ ] there must be hooks in esilcallbacks reserved for tracing and hooks reserved for platform voodo custom
- [ ] explicit regprofiles in analplugins (don't expect the on…
-
Currently if you go through code of those analysis plugins that support ESIL feature, you will notice there are similar macroses/functions to generate some common "constructs" of the ESIL. Moreover I …
-
Esil is known to be capable of more stuff than just static analysis. Add an option in `dbg.swstep.esil` to use esil to determine the destination of an instruction like `call [eax+3]` at runtime