Skip to content
Hashashin: A Fuzzy Matching Tool for Binary Ninja
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Type Name Latest commit message Commit time
Failed to load latest commit information.

Hashashin: A Fuzzy Matching Tool for Binary Ninja

This tool detects similar functions between binaries, and ports annotations (currently only in the form of tags) for matching basic blocks.


Installation in Docker


  • Download a Linux version of Binary Ninja (commercial or headless) from Vector35 and place at third-party/binaryninja/
  • Place your license file at third-party/binaryninja/license.dat

Then, build the provided Docker containers as described here:

docker build -t safedocs/base/static-light -f Dockerfile.base .
docker build -t safedocs/hashashin:local -f .

Due to how the Developer docker is setup below, your code changes will sync into it and you do not need to rebuild unless dependencies change. Launch and enter the container:

docker run -it --rm -v"$(pwd):/processor" --name dev-hashashin safedocs/hashashin:local

Installation Locally

The Docker method is supported to enable more consistent development envrionments. However, you should be able to run locally as long as the dependencies are installed:

  • BinaryNinja headless
  • Python numpy


Generate Signatures

Provide a Binary Ninja database with tags applied to it which you want to identify.

./src/ <input_bndb> <signature_file>

For example, ./src/ tests/test1_annotated.bndb test1_annotated.sig.

NOTE: On sizeable files with many functions, this process will take time.

Apply Signatures

./src/ <input_binary> <signature_file>

This will output to a file at the same path as the input_binary with .bndb appended, which is the annotated Binary Ninja database as a result of applying signatures.

You can’t perform that action at this time.