Beispiel #1
0
 def run(self, arg):
     idaapi.load_and_run_plugin('jarvis\jarvis.py', 0)
import os
import sys
import idaapi
import idc 

idc.SetProcessorType('spu', SETPROC_USER), idaapi.load_and_run_plugin("gdb_user.plw", 0)
sEA = 0x0
eEA = MaxEA()
analyze_area(sEA, eEA)
Beispiel #3
0
import idaapi
import idc
import os

idaapi.autoWait()
# Optionally, run `symchk  /s srv*c:\symbols*https://msdl.microsoft.com/download/symbols c:\windows\system32\*.dll` to download all symbols to local cache
os.environ['_NT_SYMBOL_PATH'] = 'C:\\symbols'
idaapi.load_and_run_plugin("pdb", 3)
idc.gen_simple_call_chart("out.gdl", "gdl", 0x1000)
idc.Exit(0)
 def run(self, arg):
     idaapi.load_and_run_plugin('jarvis\jarvis.py', 0)
Beispiel #5
0
 def run(self, arg):
     jarvis_loc = os.path.join('plugins', 'jarvis', 'jarvis.py')
     full_path = idaapi.idadir(jarvis_loc)
     idaapi.load_and_run_plugin(full_path, 0)
#for example:
# - (void)startMonitoringScenarioTriggerOfType:(unsigned long long)arg1 forClient:(byref id <CLRoutineMonitorClientProtocol>)arg2;
# startMonitoringScenarioTriggerOfType:forClient:
#perhaps duplicates will be possible, but we can add a sanity check to see if that happens and deal with it later.

import idaapi
import idc
import idautils
import os
import pickle
import re

filepathoniosdevice=idc.ARGV[1]
outputFile=idc.ARGV[2]
f = open(outputFile,'a')
idaapi.load_and_run_plugin("objc", 1)

#TODO I should extract the relevant methods from our dictionary and parse out the name likely to appear in the IDA disassembly.
#functionName = "startMonitoringScenarioTriggerOfType:forClient:"
#functionName =  "- (void)startMonitoringScenarioTriggerOfType:(unsigned long long)arg1 forClient:(byref id <CLRoutineMonitorClientProtocol>)arg2;"

#Given a full method declaration, parse out a string that will match IDA's function naming convention

#This function appears more than once.
#I guess the same selector is used by multiple objects.
#We can state this limitation in the paper. It shouldn't be a big deal.
functionName =  "- (void)startUpdatingLocation;"
#drop the semicolon
functionName = functionName[:-1]
funNameComponentList = []
if ":" in functionName:
 def ZadowPc(self):
     idc.SetProcessorType('metapc', SETPROC_USER), idaapi.load_and_run_plugin("hexrays.plw", 0)
Beispiel #8
0
class Freesome(idaapi.plugin_t):
    flags = idaapi.PLUGIN_PROC
    comment = ""

    help = ""
    wanted_name = "Free the Debugger"
    wanted_hotkey = "Alt-F6"

    def init(self):
        idaapi.msg("Free the Debugger is found. \n")
        return idaapi.PLUGIN_OK

    def run(self, arg):
        idaapi.msg("run() called with %d!\n" % arg)

    def term(self):
        idaapi.msg("")

    if __EA64__:
        idaapi.load_and_run_plugin("windbg_user.p64", 0)
        idaapi.load_and_run_plugin("armlinux_stub.p64", 0)
        idaapi.load_and_run_plugin("gdb_user.p64", 0)
        idaapi.load_and_run_plugin("linux_stub.p64", 0)
        idaapi.load_and_run_plugin("mac_stub.p64", 0)
        idaapi.load_and_run_plugin("win32_stub.p64", 0)
        idaapi.load_and_run_plugin("win32_user.p64", 0)
        idaapi.load_and_run_plugin("wince_stub.p64", 0)
        idaapi.load_and_run_plugin("bdescr.p64", 0)
        idaapi.load_and_run_plugin("epoc_user.p64", 0)
        idaapi.load_and_run_plugin("bochs_user.p64", 0)
        idaapi.load_and_run_plugin("mac_stub.p64", 0)
        idaapi.load_and_run_plugin("replay_user.p64", 0)
        idaapi.load_and_run_plugin("pin_user.p64", 0)
        idaapi.load_and_run_plugin("dalvik_user.p64", 0)
        idaapi.load_plugin("dalvik_user.plw")
        #idc.LoadDebugger("gdb", 1)


##'lets give this baby some debuggers'''
    else:
        idaapi.load_and_run_plugin("windbg_user.plw", 0)
        idaapi.load_and_run_plugin("armlinux_stub.plw", 0)
        idaapi.load_and_run_plugin("gdb_user.plw", 0)
        idaapi.load_and_run_plugin("linux_stub.plw", 0)
        idaapi.load_and_run_plugin("mac_stub.plw", 0)
        idaapi.load_and_run_plugin("win32_stub.plw", 0)
        idaapi.load_and_run_plugin("win32_user.plw", 0)
        idaapi.load_and_run_plugin("wince_stub.plw", 0)
        idaapi.load_and_run_plugin("bdescr.plw", 0)
        idaapi.load_and_run_plugin("epoc_user.plw", 0)
        idaapi.load_and_run_plugin("bochs_user.plw", 0)
        idaapi.load_and_run_plugin("mac_stub.plw", 0)
        idaapi.load_and_run_plugin("replay_user.plw", 0)
        idaapi.load_and_run_plugin("pin_user.plw", 0)
        idaapi.load_and_run_plugin("dalvik_user.plw", 0)
        idaapi.load_plugin("dalvik_user.plw")
Beispiel #9
0
 def ZadowPc(self):
     idc.SetProcessorType('metapc',
                          SETPROC_USER), idaapi.load_and_run_plugin(
                              "hexrays.plw", 0)