JoYo
/
subdisassem
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

display return rates for each arch

master
JoYo 2022-01-24 13:15:33 -05:00
parent e5d446c22f
commit c370df827c
3 changed files with 36 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
subdisassem/disassemble.py
View File

@ -74,18 +74,42 @@ class _CapstoneBase:
return opcodes return opcodes
@property @property
def rates(self) -> list: def rets(self) -> list:
if hasattr(self, "_rets"):
return self._rets
self._rets = list()
for opcode in self.disassembly:
if "ret" in opcode.mnemonic:
self._rets.append(opcode.mnemonic)
return self._rets
@property
def ret_rates(self) -> list:
rates = dict()
for mnemonic in set(self.rets):
rates[mnemonic] = self.rets.count(mnemonic)
listed = sorted(((value, key) for (key, value) in rates.items()), reverse=True)
return listed
@property
def mnemonic_rates(self) -> list:
mnemonics = list() mnemonics = list()
for opcode in self.disassembly: for opcode in self.disassembly:
mnemonics.append(opcode.mnemonic) mnemonics.append(opcode.mnemonic)
_rates = dict() rates = dict()
for mnemonic in set(mnemonics): for mnemonic in set(mnemonics):
_rates[mnemonic] = mnemonics.count(mnemonic) rates[mnemonic] = mnemonics.count(mnemonic)
listed = sorted(((value, key) for (key, value) in _rates.items()), reverse=True) listed = sorted(((value, key) for (key, value) in rates.items()), reverse=True)
return listed return listed

6
subdisassem/schema.py
View File

@ -20,7 +20,8 @@ class Disassembly(Base):
arch = Column(String, nullable=False) arch = Column(String, nullable=False)
checksum = Column(String, nullable=False) checksum = Column(String, nullable=False)
count = Column(Integer, nullable=False) count = Column(Integer, nullable=False)
rates = Column(String, nullable=False) mnemonic_rates = Column(String, nullable=False)
ret_rates = Column(String, nullable=False)
size = Column(Integer, nullable=False) size = Column(Integer, nullable=False)
offset = Column(Integer, nullable=False) offset = Column(Integer, nullable=False)
opcodes = Column(String, nullable=False) opcodes = Column(String, nullable=False)
@ -41,7 +42,8 @@ class Disassembly(Base):
"id": self.id, "id": self.id,
"arch": self.arch, "arch": self.arch,
"count": self.count, "count": self.count,
"rates": self.rates, "mnemonic_rates": self.mnemonic_rates,
"ret_rates": self.ret_rates,
"size": self.size, "size": self.size,
"offset": self.offset, "offset": self.offset,
} }

7
subdisassem/scripts.py
View File

@ -29,7 +29,7 @@ def subdisassem_script():
parser.add_argument("-b", "--bin-path", required=True) parser.add_argument("-b", "--bin-path", required=True)
parser.add_argument("-l", "--log", action="store_true", help="log to file") parser.add_argument("-l", "--log", action="store_true", help="log to file")
parser.add_argument( parser.add_argument(
"-f", "--fuzz", type=int, default=64, help="offset bruteforce max" "-f", "--fuzz", type=int, default=1, help="offset bruteforce max"
) )
args = parser.parse_args() args = parser.parse_args()
@ -110,7 +110,8 @@ def subdisassem_script():
row.arch = disasembler.arch row.arch = disasembler.arch
row.checksum = checksum row.checksum = checksum
row.count = len(disasembler) row.count = len(disasembler)
row.rates = str(disasembler.rates[:5]) row.mnemonic_rates = str(disasembler.mnemonic_rates[:5])
row.ret_rates = str(disasembler.ret_rates[:5])
row.size = len(raw_bytes) - offset row.size = len(raw_bytes) - offset
row.offset = offset row.offset = offset
row.opcodes = disasembler.objdump row.opcodes = disasembler.objdump
@ -132,5 +133,5 @@ def subdisassem_script():
tops = sorted(tops, key=len, reverse=True) tops = sorted(tops, key=len, reverse=True)
for top in tops[:3]: for top in tops[:5]:
logging.info(top) logging.info(top)