squeeze  ] [  sid  ]
[ Paquet source : eresi  ]

Paquet : elfsh (1:0.8a25-3 et autres)

The ELF shell

The ELF shell is an interactive, modular, and scriptable ELF (Executable & Linking Format) machine for static binary instrumentation of executable files, shared libraries and relocatable ELF objects. Its innovative features make it usable by reverse engineers and security analysts for embedded analysis using compiled C code extensions of binary programs. It features execution flow redirection that allows for dynamic analyzers generation and binary-level testing. ELFsh is compatible with kernel hardening patches : It can perform operational modifications on non-executable stack and heap based systems, and this for multiple architectures.

The main features of the ELF shell are : 

 * Injection of new compiled C code into a binary executable or dynamic
   library file.
 * Function redirection for all kind of functions.
 * Relinking of dynamic or static binary files to add all sorts of
   dependences without moving the original address space.
 * Full access in read/write mode to the ELF data structures from the
   scripting language, including but not limited to:
  - The Global Offset Table (.got) section
  - The dynamic linking section (.dynamic)
  - The constructors (.ctors) and destructors (.dtors) array
  - The ELF GNU version tables
  - The ELF interpreter (.interp) section
  - ELF dynamic and static symbol tables (.dynsym and .symtab)
  - ELF relocation tables (.rel(a).*)
  - ELF Hash table (.hash)
  - All other sections in raw read/write mode using hexadecimal strings

Étiquettes: Software Development: Testing and QA, User Interface: Command Shell, Role: Program, Scope: Utility, Interface Toolkit: Ncurses TUI

Autres paquets associés à elfsh

  • dépendances
  • recommandations
  • suggestions
  • dep: libasm0
    Disassembling engine provided to the ERESI framework
  • dep: libaspect0
    The ERESI aspect library
  • dep: libc6 (>= 2.10) [hppa]
    bibliothèque C GNU : bibliothèques partagées
    un paquet virtuel est également fourni par libc6-udeb
    dep: libc6 (>= 2.2.5) [amd64]
    dep: libc6 (>= 2.3.6-6~) [i386]
    dep: libc6 (>= 2.4) [powerpc, s390]
    dep: libc6 (>= 2.5-5) [m68k]
    dep: libc6 (>= 2.6) [sparc]
    dep: libc6 (>= 2.7-1) [mips, mipsel]
  • dep: libc6.1 (>= 2.2) [ia64]
    bibliothèque C GNU : bibliothèques partagées
    un paquet virtuel est également fourni par libc6.1-udeb
    dep: libc6.1 (>= 2.4) [alpha]
  • dep: libedfmt0
    The ERESI debug format library
  • dep: libelfsh0
    The ELF shell library
  • dep: libetrace0
    The ERESI tracer library
  • dep: libmjollnir0
    Flow analysis and fingerprinting component of the ERESI framework
  • dep: libncurses5 (>= 5.6+20071006-3)
    Bibliothèques partagées pour la gestion d'un terminal
  • dep: libreadline5 (>= 5.2)
    bibliothèques GNU readline et GNU history (exécutables)
  • dep: librevm0
    The Reverse Engineering Vector Machine
  • dep: libstderesi0
    The ERESI standard library
  • dep: libui0
    The ERESI user interface

Télécharger elfsh

Télécharger pour toutes les architectures proposées
Architecture Version Taille du paquet Espace occupé une fois installé Fichiers
alpha 1:0.8a25-3 10,5 ko92 ko [liste des fichiers]
amd64 1:0.8a25-3 10,2 ko48 ko [liste des fichiers]
hppa 1:0.8a25-3 10,2 ko84 ko [liste des fichiers]
i386 1:0.8a25-3 9,4 ko76 ko [liste des fichiers]
ia64 1:0.8a25-3 11,7 ko100 ko [liste des fichiers]
m68k (portage non officiel) 1:0.8a25-2 9,2 ko76 ko [liste des fichiers]
mips 1:0.8a25-2 9,4 ko84 ko [liste des fichiers]
mipsel 1:0.8a25-2 9,4 ko84 ko [liste des fichiers]
powerpc 1:0.8a25-3 11,9 ko92 ko [liste des fichiers]
s390 1:0.8a25-3 10,5 ko84 ko [liste des fichiers]
sparc 1:0.8a25-3 9,9 ko84 ko [liste des fichiers]