Analysis realtime resolving side cases

elbee-cyber / RopView

A BinaryNinja plugin for contextual gadget analysis and semantic/hueristic based querying.

MIT License

48 stars 1 forks source link

Analysis realtime resolving side cases #17

Closed elbee-cyber closed 6 months ago

elbee-cyber commented 6 months ago

Handle realtime resolving for unmapped fetching.

elbee-cyber commented 6 months ago

Reads work IF the deref is in mapped memory Writes work IF the deref is in mapped writable memory

Otherwise, abort analysis with the reason: Analysis aborted due to deref in unmapped memory

elbee-cyber commented 6 months ago

Handling, segmentation and re-mapping functionality added to gadgetanalysis.

READ implemented

Need to implement: Write and fetch cases

elbee-cyber commented 6 months ago

Fetch case will need to rely on existing emulation segments having the correct permissions: https://github.com/unicorn-engine/unicorn/blob/master/bindings/python/unicorn/unicorn_const.py

elbee-cyber commented 6 months ago

WRITEs should also print out the tracked memory address during steps/results CALLs cannot be followed (just show where execution continues) Come up with a general abort message for all other cases