Coder Social home page Coder Social logo

ida-helpers's Introduction

ida-helpers

Collection of IDA helpers

Heap Viewer

Heap viewer will parse an "IDA Segment Export" data heap_base.txt and will produce a table with the following details: + segment n. + segment start address + segment end address + segment size + space between two segments

Usage:

heap_viewer.py -f heap_base.txt -o output.md --segment
	-f 			IDA Segment Export input file
	-o 			Output File
	--segment		Hide space between two segment information

This will be the output file format:

-----------------------------------------------------------------------------------------------
|	seg n.	|	start		|	end			|	size
-----------------------------------------------------------------------------------------------
|	0		|	0xea180000	|	0xea300000	|	0x180000
-----------------------------------------------------------------------------------------------[130547712]
|	1		|	0xe2480000	|	0xe2500000	|	0x80000
-----------------------------------------------------------------------------------------------[2621440]
|	2		|	0xe2180000	|	0xe2200000	|	0x80000
-----------------------------------------------------------------------------------------------[23592960]
|	3		|	0xe0a80000	|	0xe0b00000	|	0x80000
-----------------------------------------------------------------------------------------------[18874368]

Segment Dumper

To use in conjunction with Heap Viewer, copy and paste the output address list and size from Heap Viewer inside Segment Dumper and load it into IDA, it will dump the relative segment from the memory saving it as a .bin file in the hardcoded folder.

Base Address

Replace the path of the desired library, insert function names in f_name and respective offset in f_addr. The script will pull library base address from IDA and calculate the final addresses for every listed functions, setting a software breakpoint to the respective address.

eg.

library base address = C7180000
function address = C718FF90

offset(base addr - function addr)= FF90

func addr = (offset + base addr)

P/P/R

Find pop pop ret gadgets

Func Complexity

Print out an ordererd list of functions, from the least complex to the most one (based on the number of basic blocks)

ida-helpers's People

Contributors

voidsec avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar

Forkers

clayne rileysjc

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.