communication
RECON-BRX-2017-GRAP
RECON-BRX-2017-GRAP
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Disassembly Graph matching Patterns Bindings IDA plugin Perspectives<br />
Control flow graph (CFG)<br />
© 2017 Cassidian Cybersecurity SAS - All rights reserved. The reproduction, distribution and utilization of this document as well as the <strong>communication</strong> of its contents to others<br />
without express authorization is prohibited. Offenders will be held liable for the payment of damages. All right reserved in the event of the grand of a patent, utility model or design.<br />
8B 44 24<br />
04 03 C1<br />
8A 10 80<br />
F2 11 80<br />
EA 25 41<br />
3B 4C 24<br />
08 88 10<br />
7C E9<br />
Bytes (hex)<br />
mov eax, [esp+4]<br />
add ecx, eax<br />
mov dl, [eax]<br />
xor dl, 0x11<br />
sub dl, 0x25<br />
inc ecx<br />
cmp ecx, [esp+8]<br />
mov [eax], dl<br />
jl 0x40129b<br />
retn<br />
Assembly listing<br />
Control flow graph (CFG)<br />
mov eax, [esp+4]<br />
add ecx, eax<br />
mov dl, [eax]<br />
xor dl, 0x11<br />
sub dl, 0x25<br />
inc ecx<br />
cmp ecx, [esp+8]<br />
mov [eax], dl<br />
jl 0x40129b<br />
Standalone tool:<br />
◮ Recursive (static)<br />
disassembler<br />
◮ Based on Capstone<br />
IDA plugin:<br />
◮ Graph created by IDA<br />
retn<br />
4 / 39
Change language