读书我
Binclass
- 从C ++编译的二进制/恶意软件(主要是为PE文件编写的)中恢复对象信息,并动态链接并完全剥离。
- 0.4V上次更新于2015年7月3日
如何使用?
选项1 :从GIT存储库下载并安装玫瑰编译器。建立玫瑰及其对PC的依赖性。
提升库安装
在www.boost.org/users/download上下载boost(建议使用版本<= 1.53)
tar -zxf boost- [versionNumber] .tar.gz
mkdir installtree(例如boost_install)
./bootstrap.sh -prefix = [installtree]
./bjam install -prefix = [installtree]
您可能还需要编译一些提升库。我通常需要这些用于BOOST-1.53:CHRONO DATE_TIME文件系统iostreams program_options random Regex信号系统螺纹波。我还将“ -sno_compression = 1 -sno_zlib = 1 -Sno_Bzip2 = 1”添加到BJAM(或B2)命令。
玫瑰框架安装
- git克隆https://github.com/in3o/edg4x-rose
- Mkdir Buildrose
- CD Buildrose
- 导出java_home =/usr/apps/java/jdk1.5.0-11
- export ld_library_path = $ java_home/jre/lib/i386/server:$ ld_library_path
- 导出ld_library_path = [boost_install]/lib:$ ld_library_path
- ../edg4x-rose/configure --prefix=[ROSE_INSTALL] --with-boost=[BOOST_INSTALL] ----with- boost-libdir=BOOST_INSTALL/lib --without-haskell --disable-php --disable-cuda --disable- doxygen-developer-docs --with-yaml=/path/to/yaml - with-yices =/path/to/yices-可启用二进制 - - with-boost-thread-with-java = $ java_home -with-with-with-with-c_optimize = -o0 -with-with-with-with-with-with-with-with-with-with-with-with-with-with-with cxx_optimize = -o0
- make -jx(其中x是您要构建的核心数。建议的“ 3”)
- 进行检查(用于测试安装)(可选)
- 进行安装
- 进行安装检查(用于测试安装)(可选)
注意:这可能需要2-4个小时。如果您迫不及待那么久,请查看选项2 [以下]。
*选项2 :下载(6.8 GB)Ubuntu 14.04虚拟机构建具有所有必要标志。
依赖性
- Boost Library(版本<= 1.53)
- YAML库下载
- YICES SMT求解器库版本1.0.40
使用Binclass
- 转到Binclass/SRC目录
- 干净
- 进行安装
- ./ binclass -help(请提供标志和所有)
- (例如)./ binclass-output-def-use -yaml-file ../ results/test_12.yaml ../testfiles/test_12.exe
要做列表
