amoco
amoco copied to clipboard
bdcht
yet another tool for analysing binaries
Not sure how to minimize this, but I got an abort with the above error while attempting to classify AMD64 instructions. I'll see if I can dig into it some...
This seems like a really great project with a lot of potential uses. For one, I'd like to use it in my [pwndbg](https://github.com/zachriggle/pwndbg) debugger scripts for GDB in order to...
Hello, First, amoco seems really cool. Thanks! I have an issue, and a question Issue: cfg recovery seems to be a bit broken currently. I have a simple 'puts("hello world")'...
``` >>> from amoco.arch.x64 import cpu_x64 as cpu >>> i = cpu.disassemble(b'\x66\x48\x0f\x6e\xce') >>> print(i) movd xmm1, rsi ``` It should be `movq` instead of `movd`.
``` from amoco.arch.x64 import cpu_x64 as cpu i = cpu.disassemble(b'\x41\x0f\x16\x45\x68\x00\x00') assert i.length==5 assert i.mnemonic=='MOVHPS' assert str(i) == 'movhps xmm0, qword ptr [r13+0x68]' ``` Fails because `i.length` is 6. The hack...
It took me some time to extract from the non-regression tests of plasmasm a short example. ``` from amoco.cas.mapper import mapper from amoco.arch.x64 import env machine = mapper() machine[env.mem(env.rsp,size=64)] =...
Here is the patch I use ``` diff --git a/amoco/arch/x64/spec_ia32e.py b/amoco/arch/x64/spec_ia32e.py index ce976ea..c84285c 100644 --- a/amoco/arch/x64/spec_ia32e.py +++ b/amoco/arch/x64/spec_ia32e.py @@ -36,6 +36,10 @@ def prefix_grp1(obj, _pfx): setpfx(obj, _pfx, 0) +# Because...
Here the patch I use. ``` diff --git a/amoco/arch/x64/asm.py b/amoco/arch/x64/asm.py index b891d1f..201bb7d 100644 --- a/amoco/arch/x64/asm.py +++ b/amoco/arch/x64/asm.py @@ -1819,3 +1819,6 @@ def i_XLATB(i, fmap): fmap[rip] = fmap[rip] + i.length _b...
The people at pyparsing broke backwards compatibility with no valid reasons (one of the things I really don't like...) I use the patch below for amoco, which allows to work...
commit 24f0b3885aee8f3aaf2b7819bc258446f08b4d8e broke a few non-regression tests related to vec type
`python -m pytest` generates three errors in test_cas_exp and two errors in test_cas_mapper. A short example where the patch broke something is `python -c 'from amoco.cas.expressions import *;print(vec([lab("eax",size=32),cst(0x10,32)])+3)'` which outputted...