Skip to content
/ pyflirt Public

map file generator for intel x86 binary based on flirt signature

84 stars 9 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

mokhdzanifaeq/pyflirt

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
core
core
 
 
screenshot
screenshot
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
pyflirt.py
pyflirt.py
 
 

Repository files navigation

pyflirt

pyflirt is a map file genarator for binary file based on flirt signature. Since it is used with ollydbg, only intel x86 binary is currently supported. This tool was succesfully tested with ollydbg 1.10 MapConv plugin to import the map file.

Installation

Dependencies

Require python capstone binding for disassembly

Install

git clone https://github.com/mokhdzanifaeq/pyflirt

Usage

usage: pyflirt.py [-h] -b path -s path -o path

optional arguments:
  -h, --help           show this help message and exit
  -b path, --bin path  path of binary file to be analysed
  -s path, --sig path  path of signature file to be analysed
  -o path, --out path  path of map file to be generated

Screenshots

Before:

before

After:

after

License

Feel free to update the code as you like, fix bugs and implement new features.

Credits

  • rheax - understanding flirt file format
  • aquynh - capstone framework

About

map file generator for intel x86 binary based on flirt signature

Resources

Readme
Activity

Stars

84 stars

Watchers

10 watching

Forks

9 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages