Ghidrathon is a Ghidra extension that adds Python 3 scripting capabilities to Ghidra. Why? Ghidra natively supports scripting in Java and Jython. Unfortunately many open-source analysis tools, like capa, Unicorn Engine, angr, etc., are written in Python 3 making it difficult, and in some ...
My Ghidra script to analyze binary files to find the most complex functions. - Har-SHAW/GhidraScripts
Update (4/4/2019) — Great news. NSA today finally released the complete source code for GHIDRA version 9.0.2 which is now available on its Github repository . GHIDRA is agency's home-grown classified software reverse engineering tool that agency experts have been using internally for over a...
https://github.com/unixpickle/gobfuscate Currently, gobfuscate can manipulate package names, global variable and function names, type names, method names, and strings. Binaries released after that sample belong to Group 7. In these, some function names were obfuscated, but not the package names....
Ghidra –https://ghidra-sre.org Redress –https://github.com/goretk/redress References and Further Reading https://www.intezer.com/blog/research/new-golang-worm-drops-xmrig-miner-on-servers/ https://developer.aliyun.com/article/780758
Even Ghidra has the problem, so use it offline. Though I suspect most do that anyway. https://twitter.com/PatchFriday/status/1103921729741586433/photo/1JonKnowsNothing • December 11, 2021 1:13 AM @All Several MSM reports about reconstructing the “Spiral Letter Lock” used by Mary Quee...
ret-sync- ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra disassemblers. smartdns- A local DNS server to obtain the fastest website IP for the best Internet experience, 一个本地DNS服务器,获取最快的网站IP,获得...
Build using docker: ./build.sh -p YOUR_GHIDRA_INSTALL_DIR -d or without: ./build.sh -p YOUR_GHIDRA_INSTALL_DIR In the Project window of Ghidra: File > Install Extension > Enable the GhidraChatGPT extension Restart Ghidra In the CodeBrowser window of Ghidra: File > Configure > Plugin ...
A SLEIGH processor spec for Ghidra for the Matsushita (Panasonic) MN102 processor - Pokechu22/ghidra-mn102-lang
It is worth noting that the analysis will only be as good as the model, this script basically just bridges the models and Ghidra. The better the model (more parameters, slower) the more comprehensive and correct the analysis will be. If you want a quick overview of a function, codellama...