Skip to content
/ deobfuscate_cfg_flattening Public

Code+samples for paper on deobfuscating control flow flattening

License

MIT license
5 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Toizi/deobfuscate_cfg_flattening

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
samples
samples
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
compile_samples.sh
compile_samples.sh
 
 
run_samples.sh
run_samples.sh
 
 
undo_flattening.py
undo_flattening.py
 
 

Repository files navigation

Dependencies

  • python3
  • python3-graph-tool
  • radare2 + python3 bindings
  • unicorn + python3 bindings
  • graphviz + python3 bindings

Ubuntu 18.04 installation: graph-tool installation instructions

sudo apt install python3 radare2
pip3 install unicorn
pip3 install r2pipe
sudo apt install python3-gv

Usage

Command template

./undo_flattening.py path_to_binary hex_start_address_of_function [state_register_name]

Single example

./undo_flattening.py samples/fla_test.elf 0x000400500

All samples from ./samples

./run_samples.sh

Patched binaries will be created at path_to_binary.patched

Limitations

  • x86-64 only right now. Should be easy to change emulation code to support x86

About

Code+samples for paper on deobfuscating control flow flattening

Resources

Readme

License

MIT license
Activity

Stars

5 stars

Watchers

3 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages