def run(self, arg): idaapi.load_and_run_plugin('jarvis\jarvis.py', 0)
import os import sys import idaapi import idc idc.SetProcessorType('spu', SETPROC_USER), idaapi.load_and_run_plugin("gdb_user.plw", 0) sEA = 0x0 eEA = MaxEA() analyze_area(sEA, eEA)
import idaapi import idc import os idaapi.autoWait() # Optionally, run `symchk /s srv*c:\symbols*https://msdl.microsoft.com/download/symbols c:\windows\system32\*.dll` to download all symbols to local cache os.environ['_NT_SYMBOL_PATH'] = 'C:\\symbols' idaapi.load_and_run_plugin("pdb", 3) idc.gen_simple_call_chart("out.gdl", "gdl", 0x1000) idc.Exit(0)
def run(self, arg): jarvis_loc = os.path.join('plugins', 'jarvis', 'jarvis.py') full_path = idaapi.idadir(jarvis_loc) idaapi.load_and_run_plugin(full_path, 0)
#for example: # - (void)startMonitoringScenarioTriggerOfType:(unsigned long long)arg1 forClient:(byref id <CLRoutineMonitorClientProtocol>)arg2; # startMonitoringScenarioTriggerOfType:forClient: #perhaps duplicates will be possible, but we can add a sanity check to see if that happens and deal with it later. import idaapi import idc import idautils import os import pickle import re filepathoniosdevice=idc.ARGV[1] outputFile=idc.ARGV[2] f = open(outputFile,'a') idaapi.load_and_run_plugin("objc", 1) #TODO I should extract the relevant methods from our dictionary and parse out the name likely to appear in the IDA disassembly. #functionName = "startMonitoringScenarioTriggerOfType:forClient:" #functionName = "- (void)startMonitoringScenarioTriggerOfType:(unsigned long long)arg1 forClient:(byref id <CLRoutineMonitorClientProtocol>)arg2;" #Given a full method declaration, parse out a string that will match IDA's function naming convention #This function appears more than once. #I guess the same selector is used by multiple objects. #We can state this limitation in the paper. It shouldn't be a big deal. functionName = "- (void)startUpdatingLocation;" #drop the semicolon functionName = functionName[:-1] funNameComponentList = [] if ":" in functionName:
def ZadowPc(self): idc.SetProcessorType('metapc', SETPROC_USER), idaapi.load_and_run_plugin("hexrays.plw", 0)
class Freesome(idaapi.plugin_t): flags = idaapi.PLUGIN_PROC comment = "" help = "" wanted_name = "Free the Debugger" wanted_hotkey = "Alt-F6" def init(self): idaapi.msg("Free the Debugger is found. \n") return idaapi.PLUGIN_OK def run(self, arg): idaapi.msg("run() called with %d!\n" % arg) def term(self): idaapi.msg("") if __EA64__: idaapi.load_and_run_plugin("windbg_user.p64", 0) idaapi.load_and_run_plugin("armlinux_stub.p64", 0) idaapi.load_and_run_plugin("gdb_user.p64", 0) idaapi.load_and_run_plugin("linux_stub.p64", 0) idaapi.load_and_run_plugin("mac_stub.p64", 0) idaapi.load_and_run_plugin("win32_stub.p64", 0) idaapi.load_and_run_plugin("win32_user.p64", 0) idaapi.load_and_run_plugin("wince_stub.p64", 0) idaapi.load_and_run_plugin("bdescr.p64", 0) idaapi.load_and_run_plugin("epoc_user.p64", 0) idaapi.load_and_run_plugin("bochs_user.p64", 0) idaapi.load_and_run_plugin("mac_stub.p64", 0) idaapi.load_and_run_plugin("replay_user.p64", 0) idaapi.load_and_run_plugin("pin_user.p64", 0) idaapi.load_and_run_plugin("dalvik_user.p64", 0) idaapi.load_plugin("dalvik_user.plw") #idc.LoadDebugger("gdb", 1) ##'lets give this baby some debuggers''' else: idaapi.load_and_run_plugin("windbg_user.plw", 0) idaapi.load_and_run_plugin("armlinux_stub.plw", 0) idaapi.load_and_run_plugin("gdb_user.plw", 0) idaapi.load_and_run_plugin("linux_stub.plw", 0) idaapi.load_and_run_plugin("mac_stub.plw", 0) idaapi.load_and_run_plugin("win32_stub.plw", 0) idaapi.load_and_run_plugin("win32_user.plw", 0) idaapi.load_and_run_plugin("wince_stub.plw", 0) idaapi.load_and_run_plugin("bdescr.plw", 0) idaapi.load_and_run_plugin("epoc_user.plw", 0) idaapi.load_and_run_plugin("bochs_user.plw", 0) idaapi.load_and_run_plugin("mac_stub.plw", 0) idaapi.load_and_run_plugin("replay_user.plw", 0) idaapi.load_and_run_plugin("pin_user.plw", 0) idaapi.load_and_run_plugin("dalvik_user.plw", 0) idaapi.load_plugin("dalvik_user.plw")
def ZadowPc(self): idc.SetProcessorType('metapc', SETPROC_USER), idaapi.load_and_run_plugin( "hexrays.plw", 0)