BARF's REIL use case: find an execution path to a function

The translation for the Hexagon architecture is being developed in the [`reil`](https://github.com/programa-stic/hexag00n/tree/reil/hexagondisasm/reil) branch in order to use BARF's REIL analysis tools. As [first example](https://github.com/programa-stic/hexag00n/blob/reil/hexagondisasm/reil/translate-reil-generic.py) of this use, the [`factorial_example.elf`](https://github.com/programa-stic/hexag00n/blob/master/hexagondisasm/data/factorial_example.elf) binary of this repository is being analyzed, in order to find all possible execution paths to a chosen function (e.g., `malloc`) with a particular execution environment (e.g., a specific value as its argument).

This example has as a final application the check of the reachability of [CVE-2016-5080](https://github.com/programa-stic/security-advisories/tree/master/ObjSys/CVE-2016-5080) in modem binaries, but it is also useful as a test case to [add Hexagon architecture support dynamically to BARF](https://github.com/programa-stic/barf-project/issues/37).

Modifications to the BARF source code are being done in a [forked repository](https://github.com/lmolas-sadosky/barf-project), and will later be merged to the original project.





Provide feedback

Saved searches

Use saved searches to filter your results more quickly

BARF's REIL use case: find an execution path to a function #4

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

BARF's REIL use case: find an execution path to a function #4

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions