Stack Overflow
Stack Overflow

Questions tagged [angr]

Questions addressing the platform-agnostic binary analysis framework angr. Use together with python-tag.

Angr is a suite of Python 3 libraries that let you load binary data and treat it in different ways:

  • Disassembly and intermediate-representation lifting
  • Program instrumentation
  • Symbolic execution
  • Control-flow analysis
  • Data-dependency analysis
  • Value-set analysis (VSA)
  • Decompilation
38 questions
2
votes
0 answers

Control flow graph of entire binary file

Is it possible to get the control flow graph of the entire binary file using any disassembler? IDA Pro generates the CFG for each function. Can we use it to get the CFG of the entire program?
ad99713
  • 21
  • 1
2
votes
0 answers

how to use 'stdin' in angr

I'm new to angr, trying to solve a simple executable, it reads 3 characters and compare to string 'abc'. #include using namespace std; int main() { char v[3]; scanf("%3s", v); if(v[0] == 'a' && v[1] == 'b' && v[2] == 'c') {…
aj3423
  • 2,003
  • 3
  • 32
  • 70
2
votes
1 answer

How to allocate (malloc) memory in an angr simulation state?

I successfully figured out how to run a program using angr, starting with the state defined by a core dump (see How to run program using angr after loading with the elfcore backend?) but now I am wondering this: How can I malloc memory in the…
pooley1994
  • 723
  • 4
  • 16
2
votes
1 answer

How to force pip to use GCC on OSX?

A bit of an irritating problem with pip on OSX. A python program I am trying to install requires GCC. The suggested invocation is: env CC=/usr/local/bin/gcc-6 pip install angr However this results in an error suggested OSX decided to run CLANG…
MrSynAckSter
  • 1,681
  • 1
  • 18
  • 34
2
votes
0 answers

z3py raising exception on `Int('x')`

In python, after import z3, I did x = Int('x'). This gave me the traceback In [16]: x = Int('x') --------------------------------------------------------------------------- ArgumentError Traceback (most recent call…
Elliot Gorokhovsky
  • 3,610
  • 2
  • 31
  • 56
1
vote
0 answers

Using angr's symbolic stack for solving binaries

I am trying to adapt the technique mentioned in https://blog.notso.pro/2019-03-26-angr-introduction-part2/ on another binary (02_angr_find_condition). The binary can be found at https://github.com/jakespringer/angr_ctf/tree/master/dist I am trying…
localacct
  • 611
  • 5
  • 13
1
vote
1 answer

how to get the unsigned int value of a claripy.ast.bv.BV object in angr?

import angr import claripy # 创建 angr 项目对象 proj = angr.Project('./angr_study/main', load_options={'auto_load_libs': False}) # 设置函数参数 add_addr = proj.loader.find_symbol('add').rebased_addr state =…
bin song
  • 11
  • 1
1
vote
0 answers

Load Python Dependencies With Conflicting Sub-dependencies

I have created two virtual environments (with virtualenv) for two dependencies I will be importing, namely Qiling (a framework for binary emulation based on Unicorn Emulator) and Angr (a binary analysis framework). In each of these virtual…
falhumai96
  • 327
  • 2
  • 17
1
vote
0 answers

how to apply constraints to heap side effects in angr

I'm trying to use angr to verify a function's behavior by deriving the correct input for a given result. The function modifies a buffer, in this case it simply copies the input to it, so I set up symbolic variables on the heap that I apply an…
ragingSloth
  • 1,094
  • 8
  • 22
1
vote
0 answers

Cannot find files that should be inside my running docker container

I'm doing some work with the reverse engineering tool angr, and I'm trying to run it in a container. My current directory looks likes this: ask@Garsy:~/Notes/ethHack/wetransfer-85179d/Export$ ls angry.py …
partyTuringFriend
  • 31
  • 4
1
vote
0 answers

Python 3.9: Why I can't import angr

Installed angr module to Python3.9. Trying to run program, I get this error (I'm using Kali linux, if it's significant here): Traceback (most recent call last): File "/home/vasyok03/Downloads/angr_basic_solver.py", line 1, in import…
vasyok03
  • 21
  • 5
1
vote
0 answers

How to create binary of Python script

I am trying to use angr, a binary analysis toolkit for Python. I realized that I need a binary file to be able to load the project and start working on it. How can I convert a python script or c++ program to a binary file? Is there a way achieve…
anaw ol
  • 11
  • 2
1
vote
1 answer

How to run program using angr after loading with the elfcore backend?

I am attempting to write a python script using the angr binary analysis library (http://angr.io/). I have written code that successfully loads a core dump of the process I want to play with by using the ElfCore back end…
pooley1994
  • 723
  • 4
  • 16
1
vote
1 answer

Error when I'm trying to use angr on OS X

When I try to use angr I get this warning import angr WARNING | 2018-06-30 15:10:26,560 | angr.state_plugins.unicorn_engine | failed loading "angr_native.dylib", unicorn support disabled …
Rung K
  • 23
  • 4
1
vote
1 answer

Angr installation failed in RPI3

I am trying to install Angr tool on Raspberry pi 3, OS Ubuntu mate 16.04. Git link Angr tool I isolated problem while installing pyvex getting this error, git link Pyvex running install running bdist_egg running build Building libVEX cc -Ipub -Ipriv…
nutim
  • 169
  • 3
  • 15
1
2 3