Something like the KAnal (KrytpoAnalyzer) of PEiD or FindCrypt from IDA would be nice to have in r2.
I like the idea, but maybe we should try to do it better than IDA. Sometimes there are no constant values, for example the intel SGX-stuff. We should look out for opcodes too, like cpuid. This shows what I mean:
Since we already have /R for searching ROP gadgets, what about /K ?
Searching for crypto constant should be easy to implement.
This one is also very interessting https://github.com/sandsmark/signsrch and quite efficient ;)
I think that we should use yara (a0d3af6) for this.
What about adding a crypo.yara file into the tree ?
Some rules for crypto: https://github.com/Phoul/yara_rules
Phoul added a license to its files (GPL).
I added them to r2 :)