DeforaNetworks/manticore
3
0
Fork 0
Code Releases Activity
manticore/examples/script/lads-baby-re.py
yan badf1ab28e Initial import
2017-02-13 12:04:15 -05:00

31 lines
683 B
Python
Raw Blame History

'''
API v0.1.0
Solves modified version of baby-re, compiled for arm.
'''
import sys
from manticore import Manticore
if __name__ == '__main__':
path = sys.argv[1]
m = Manticore(path)
def myhook(ctx, state, ctl):
flag = ''
cpu = state.cpu
arraytop = cpu.R11
base = arraytop - 0x18
for i in xrange(4):
symbolic_input = cpu.read_int(base + i*4)
# TODO apis to contrain input to ascii
concrete_input = state.solve_one(symbolic_input)
flag += chr(concrete_input & 0xff)
print 'flag is:', flag
ctl.exit()
m.add_hook(0x109f0, myhook)
m.start()
print 'done'
View Git Blame Copy Permalink