DeforaNetworks/manticore
3
0
Fork 0
Code Releases Activity
23 Commits 7 Branches 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Mark Mossberg b591f2a83a Add unicorn to required deps (#31) 
* Add unicorn to python deps

* Update readme

* Add deps to setup.py

* test letting pip install install deps in travis
2017-03-01 11:22:04 -05:00
examples
Add hook decorator (#28)
2017-02-27 15:44:33 -05:00
manticore
Fix the --stats flag (#26)
2017-02-27 14:45:12 -06:00
scripts
Port to real python package structure (#6)
2017-02-15 12:32:08 -05:00
test
Add hook decorator (#28)
2017-02-27 15:44:33 -05:00
.gitignore
Remove ManticoreControl object [#180] (#4)
2017-02-14 14:54:52 -05:00
.travis.yml
Add unicorn to required deps (#31)
2017-03-01 11:22:04 -05:00
LICENSE
Add LICENSE file (#5)
2017-02-13 18:30:25 -05:00
README.md
Add unicorn to required deps (#31)
2017-03-01 11:22:04 -05:00
requirements.txt
Add unicorn to required deps (#31)
2017-03-01 11:22:04 -05:00
setup.py
Add unicorn to required deps (#31)
2017-03-01 11:22:04 -05:00
stats.py
Initial import
2017-02-13 12:04:15 -05:00

README.md

manticore

Build Status

Manticore is a symbolic execution engine for binary analysis, usable as a command line tool or Python Library (pre-alpha).

It executes multiple paths of a program simultaneously by replacing input data with a set of constraints representing all possible values of that data, allowing it to thoroughly discover numerous paths as the program executes control flow. By solving the constraints with a theorem prover, Manticore generates concrete inputs to trigger discovered paths.

features

  • Input Generation: Manticore automatically generates inputs that trigger unique code paths.
  • Defect Discovery: Manticore discovers program defects enabling memory safety violations and generates inputs to trigger them.
  • Execution Tracing: Manticore records an instruction-level trace of the program's execution for each generated input.
  • Concolic Execution: Manticore loads memory dumps of running Windows programs to allow deep state space exploration.
  • Programmatic Interface (pre-alpha): Manticore exposes programmatic access to its symbolic execution engine via a Python API.

scope

Manticore supports binaries of the following formats, operating systems, and architectures. It has been primarily used on binaries compiled from C and C++.

  • OS/Formats: Linux ELF, Windows Minidump
  • Architectures: x86, x86_64, ARMv7

requirements

Manticore is officially supported on Linux and uses Python 2.7.

required dependencies

  • Python Dependencies: Run pip install -r requirements.txt
  • Z3 Theorem Prover: Download the latest release for your platform from https://github.com/Z3Prover/z3/releases/latest, and place the enclosed z3 binary in your $PATH.
    • Alternatively, CVC4 or Yices can be used.

development dependencies

  • keystone: Used in unit tests

usage

python main.py ./path/to/binary  # runs, and creates a directory with analysis results

or

# example Manticore script
from manticore import Manticore

hook_pc = 0x400ca0

m = Manticore('./path/to/binary')

@m.hook(hook_pc)
def hook(state):
  cpu = state.cpu
  print 'eax', cpu.EAX
  print cpu.read_int(cpu.SP)
  
  m.terminate()  # tell Manticore to stop

m.run()
Description
No description provided
Readme 12 MiB
Languages
Python 100%