Open cpholguera opened 5 years ago
You can find more information here (old sldies) : https://2019.pass-the-salt.org/files/slides/02-Dexcalibur.pdf This tool is used in order to perform deobfuscation, anti-root/debug/emulator bypass, intercept serialization, follow data, and more. It focus on bytecode static analysis / DBI / and dynamic analysis. Minimalist VM can simplify CFG and print results as pseudo-code (it performs constant propagation, removing useless goto and always True/False predicate, ...)
Evaluate Dexcalibur (https://github.com/FrenchYeti/dexcalibur/wiki/Gallery) and check if it makes sense to add to MSTG. If it does add it to 0x05b.
https://www.youtube.com/watch?v=2dGoolvMEpI