Skip to content

thebabush/binja_sibyl

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
__init__.py
__init__.py
 
 
plugin.json
plugin.json
 
 

Repository files navigation

Binja Sibyl

A Miasm2 + binaryninja based function divination.

What it does

Sybil is a tool to recognize standard functions based on their side effects. For a detailed introduction see Sybil's README.

Screenshot

Screenshot

Options

  • Function prefix: a prefix to prepend to the function name after it has been recognized (e.g.: prefix_strlen).
  • Function selector: whether to apply the analysis to unknown functions (starting with sub_) or every funtion.
  • Add comment: whether to add a comment at the top of the function. Useful to keep in mind that the function name might be wrong (Sibyl can give false positives).

Speed

Currently, Binja Sibyl uses a single thread so, as of now, it's slower than running Sibyl manually.

Props

Shout out to Camille MOUGEY, the author of Sibyl. The underlying idea is pretty clever.

About

A (Miasm2 + binaryninja) based function divination.

Topics

security reverse-engineering binary-ninja program-analysis miasm2 function-detection binary-ninja-plugin function-recognition

Resources

Readme

License

BSD-2-Clause license
Activity

Stars

15 stars

Watchers

2 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages