cutter v1.4 (Radare with GUI )
Cutter :https://github.com/radareorg/cutterDownload:https://github.com/radareorg/cutter/releases
A Qt and C++ GUI for radare2 reverse engineering framework
Radare: http://radare.org/r/index.html
(Radare为命令行操作界面)
Radare is a portable reversing framework that can...
[*]Disassemble (and assemble for) many different architectures
[*]Debug with local native and remote debuggers (gdb, rap, webui, r2pipe, winedbg, windbg)
[*]Run on Linux, *BSD, Windows, OSX, Android, iOS, Solaris and Haiku
[*]Perform forensics on filesystems and data carving
[*]Be scripted in Python, Javascript, Go and more
[*]Support collaborative analysis using the embedded webserver
[*]Visualize data structures of several file types
[*]Patch programs to uncover new features or fix vulnerabilities
[*]Use powerful analysis capabilities to speed up reversing
[*]Aid in software exploitation
之前的那款 iaito 看介绍以及更名为 cutter 了:
https://github.com/hteso/iaito
This project has been moved to: https://github.com/radareorg/cutter
.
这玩意用好了不比IDA差,
测试了字符串搜索,注释、flag、交叉引用这些,有些操作会导致界面假死,但是没有崩溃,总体上要比旧版本好很多。
命令行把 radare 的都copy 过来了。
> ?
Usage: [.][~grep][@[@iter]addr!size][|>pipe] ; ...
Append '?' to any char command to get detailed help
Prefix with number to repeat command N times (f.ex: 3x)
|%var =valueAlias for 'env' command
| *[?] off[=value] Pointer read/write data/values (see ?v, wx, wv)
| (macro arg0 arg1) Manage scripting macros
| .[?] [-|(m)|f|!sh|cmd]Define macro or load r2, cparse or rlang file
| =[?] Send/Listen for Remote Commands (rap://, http://, <fd>)
| <[...] Push escaped string into the RCons.readChar buffer
| /[?] Search for bytes, regexps, patterns, ..
| ![?] Run given command as in system(3)
| #[?] !lang [..] Hashbang to run an rlang script
| a[?] Analysis commands
| b[?] Display or change the block size
| c[?] Compare block with given data
| C[?] Code metadata (comments, format, hints, ..)
| d[?] Debugger commands
| e[?] ] List/get/set config evaluable vars
| f[?] Add flag at current address
| g[?] Generate shellcodes with r_egg
| i[?] Get info about opened file from r_bin
| k[?] Run sdb-query. see k? for help, 'k *', 'k **' ...
| L[?] [-] list, unload load r2 plugins
| m[?] Mountpoints commands
| o[?] ()Open file at optional address
| p[?] Print current block with format and length
| P[?] Project management utilities
| q[?] Quit program with a return value
| r[?] Resize file
| s[?] Seek to address (also for '0x', '0x1' == 's 0x1')
| S[?] Io section manipulation information
| t[?] Types, noreturn, signatures, C parser and more
| T[?] [-] Text log utility
| u[?] uname/undo seek/write
| V Visual mode (V! = panels, VV = fcngraph, VVV = callgraph)
| w[?] Multiple write operations
| x[?] Alias for 'px' (print hexadecimal)
| y[?] [[[@]addr Yank/paste bytes from/to memory
| z[?] Zignatures management
| ?[??] Help or evaluate math expression
| ?$? Show available '
variables and aliases
| ?@? Misc help for '@' (seek), '~' (grep) (see ~??)
| ?>? Output redirection
一看又是个高大上的工具,收了,谢谢校长 飘云 发表于 2018-6-1 11:21
这玩意用好了不比IDA差,
这个比IDA好吗?大佬录个视频教大家一下怎么用。
本帖最后由 梦幻的彼岸 于 2021-4-8 17:45 编辑
2.0版本,可选中文界面
官方更新说明:https://cutter.re/cutter-2.0
页:
[1]