squeeze  ] [  sid  ]
[ 源代码: eresi  ]

软件包: elfsh (1:0.8a25-3 以及其他的)

The ELF shell

The ELF shell is an interactive, modular, and scriptable ELF (Executable & Linking Format) machine for static binary instrumentation of executable files, shared libraries and relocatable ELF objects. Its innovative features make it usable by reverse engineers and security analysts for embedded analysis using compiled C code extensions of binary programs. It features execution flow redirection that allows for dynamic analyzers generation and binary-level testing. ELFsh is compatible with kernel hardening patches : It can perform operational modifications on non-executable stack and heap based systems, and this for multiple architectures.

The main features of the ELF shell are : 

 * Injection of new compiled C code into a binary executable or dynamic
   library file.
 * Function redirection for all kind of functions.
 * Relinking of dynamic or static binary files to add all sorts of
   dependences without moving the original address space.
 * Full access in read/write mode to the ELF data structures from the
   scripting language, including but not limited to:
  - The Global Offset Table (.got) section
  - The dynamic linking section (.dynamic)
  - The constructors (.ctors) and destructors (.dtors) array
  - The ELF GNU version tables
  - The ELF interpreter (.interp) section
  - ELF dynamic and static symbol tables (.dynsym and .symtab)
  - ELF relocation tables (.rel(a).*)
  - ELF Hash table (.hash)
  - All other sections in raw read/write mode using hexadecimal strings

标签: Software Development: Testing and QA, User Interface: Command Shell, Role: Program, Scope: Utility, Interface Toolkit: Ncurses TUI

其它与 elfsh 有关的软件包

  • 依赖
  • 推荐
  • 建议
  • dep: libasm0
    Disassembling engine provided to the ERESI framework
  • dep: libaspect0
    The ERESI aspect library
  • dep: libc6 (>= 2.10) [hppa]
    GNU C 语言运行库:共享库
    同时作为一个虚包由这些包填实: libc6-udeb
    dep: libc6 (>= 2.2.5) [amd64]
    dep: libc6 (>= 2.3.6-6~) [i386]
    dep: libc6 (>= 2.4) [powerpc, s390]
    dep: libc6 (>= 2.5-5) [m68k]
    dep: libc6 (>= 2.6) [sparc]
    dep: libc6 (>= 2.7-1) [mips, mipsel]
  • dep: libc6.1 (>= 2.2) [ia64]
    GNU C 语言运行库:共享库
    同时作为一个虚包由这些包填实: libc6.1-udeb
    dep: libc6.1 (>= 2.4) [alpha]
  • dep: libedfmt0
    The ERESI debug format library
  • dep: libelfsh0
    The ELF shell library
  • dep: libetrace0
    The ERESI tracer library
  • dep: libmjollnir0
    Flow analysis and fingerprinting component of the ERESI framework
  • dep: libncurses5 (>= 5.6+20071006-3)
    终端控制的共享库
  • dep: libreadline5 (>= 5.2)
    GNU readline 与 history 库,运行时
  • dep: librevm0
    The Reverse Engineering Vector Machine
  • dep: libstderesi0
    The ERESI standard library
  • dep: libui0
    The ERESI user interface

下载 elfsh

下载可用于所有硬件架构的
硬件架构 版本 软件包大小 安装后大小 文件
alpha 1:0.8a25-3 10.5 kB92 kB [文件列表]
amd64 1:0.8a25-3 10.2 kB48 kB [文件列表]
hppa 1:0.8a25-3 10.2 kB84 kB [文件列表]
i386 1:0.8a25-3 9.4 kB76 kB [文件列表]
ia64 1:0.8a25-3 11.7 kB100 kB [文件列表]
m68k (非官方移植版) 1:0.8a25-2 9.2 kB76 kB [文件列表]
mips 1:0.8a25-2 9.4 kB84 kB [文件列表]
mipsel 1:0.8a25-2 9.4 kB84 kB [文件列表]
powerpc 1:0.8a25-3 11.9 kB92 kB [文件列表]
s390 1:0.8a25-3 10.5 kB84 kB [文件列表]
sparc 1:0.8a25-3 9.9 kB84 kB [文件列表]