Disasemble binaries and recover as much info as possible.
Project description
dis-cover
Disassemble binaries and recover as much info as possible
How to use
Run on you binary
To run this tool on your own binary, first you must install dis-cover, as well as elfutils and binutils.
pip install dis-cover
apt install elfutils binutils # or whatever your version of this is
Then, you can run it to analyze your binary, for example /bin/gold
.
dis-cover /bin/gold
This will create a reconstructed
elf file in your current directory. This binary will contain symbols and dwarf information describing the classes and hierarchies that dis-cover was able to find.
Command-line
You can install dis-cover by running pip install dis-cover
.
Here are the CLI options :
usage: dis-cover [-h] [-d OUTPUT_DIRECTORY] [-p] [-o OUTPUT_FILE] [-l] file
Disasemble binaries and recover as much info as possible
positional arguments:
file ELF file to dis-cover
optional arguments:
-h, --help show this help message and exit
-d OUTPUT_DIRECTORY, --output-directory OUTPUT_DIRECTORY
Directory where the temporary files are written (default "/tmp")
-p, --pickle Output info in the pickle format
-o OUTPUT_FILE, --output-file OUTPUT_FILE
File where the output should be written (default "./reconstructed")
-l, --list-classes List the classes found in the binary
Still TODO
- Verify objcopy and eu-unstrip outputs (priority: medium)
- Add better error handling and more helpful messages (priority: medium)
- Set NOBIT flag in the section headers (priority: low)
- Remodel output to be more understandable (priority: low)
- Find a way to compute the size of the classes (priority: low)
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
dis-cover-0.5.0.tar.gz
(11.3 kB
view hashes)
Built Distribution
Close
Hashes for dis_cover-0.5.0-py2.py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 43ac3b9870213706ba82f666574b5e57b263e90e9f742d3467dcb062309ded6a |
|
MD5 | 7613c3e8d7584556f2f797b9a308acd2 |
|
BLAKE2b-256 | b22f00cc5310354e61d254e4a91b160539102235136ba118e657608090f6983b |