radare2

Introduction
r2 is radare second edition, aims to provide a set of libraries and tools to deal with binary files. Radare project was originally a forensic tool, a command-line script hex editor, you can open a disk file, but later added support for binary file analysis, decomposition code debugger, gdb attached to support remote server, simple to it is an open source (but equally powerful) binary analysis tool, sometimes IDA does not take F5 when you can try to use it to solve some problems.

Download
https://github.com/radare/radare2 (download source, decompression)
into the source directory performed
SYS / the install.sh
. 1
common commands
r2 filename load file


aaa all parser functions, identification functions not radare2 before analysis, analysis you can print normal function code (pdf print function codes), aa command to analyze the main function

to add a question mark to find help, where we can directly aaa analyze your program and the


afl displays the main function, sometimes we do not need to analyze the entire binary file, or there is a function radare2 we can not be identified af analyze the function.


s function jumps to the position (function) wants to jump


VV enters graphical mode (the hjkl moving image) using p / P switching graphics modes, text space switching graphics mode, the text mode may be switched by p, vv to lowercase cursory information function


pdf view function assembler code


PD x x compile information printed article


"wa xxx" modified assembly instructions XXX


PX represents hexadecimal printing, the default of the current position, the number of bytes of the print control parameter


R2 filename directly into the program. Use the -d option to enter debug mode input when debugging you can see the history of operating records!


The PDC disassembly function


afx View function call


can access help, this tool is very powerful, need more practice to learn?


Good introduction tutorial:
HTTPS: //xz.aliyun.com/t/1514
https://cloud.tencent.com/developer/article/1073910
https://github.com/radare/radare2 (official
documents) --------- -------
Disclaimer: this article is the original article CSDN bloggers "Thunder_J", and follow CC 4.0 BY-SA copyright agreement, reproduced, please attach the original source link and this statement.
Original link: https: //blog.csdn.net/CharlesGodX/article/details/84927524