Reverse engineering for x86/ARM binaries. Generate a more readable code (pseudo-C) with colored syntax.
Supported formats : ELF
, PE
.
The Makefile
is used only for checking tests.
python >= 3.4
capstone + python bindings (see requirements.sh)
python-pyelftools
https://github.com/simonzack/pefile-py3k
terminal with 256 colors (if not use the option `--nocolor`)
For Python binding of Capstone engine, you can install it from PyPi, like followings:
sudo pip3 install capstone
You can also run requirements.sh
which will retrieve all requirements.
With the option -i
you enter in the interactive mode. See help
.
At the first run, reverse.py
creates a new file custom_colors.py
with
default values. Here you can set your own colors.
$ ./reverse tests/dowhile1.bin --vim
You can now run : vim dowhile1.bin.rev -S dowhile1.bin.vim
$ ./reverse.py tests/nestedloop1.bin
By opening d3/index.html
(with the option --graph
) you will be able to
see the flow graph :