grap

grap takes patterns and binary files, uses a Casptone-based disassembler to obtain the control flow graphs from the binaries, then matches the patterns against them.

Patterns are user-defined graphs with instruction conditions ("opcode is xor and arg1 is eax") and repetition conditions (3 identical instructions, basic blocks...).

Name

grap

Main Program

grap

Programs

• grap
• grap-match

Homepage

• https://github.com/QuoSecGmbH/grap/

Version

1.3.1

License

• MIT License

Maintainers

• Shmarya Rubenstein

Platforms

• aarch64-linux
• armv5tel-linux
• armv6l-linux
• armv7a-linux
• armv7l-linux
• i686-linux
• loongarch64-linux
• m68k-linux
• microblaze-linux
• microblazeel-linux
• mips-linux
• mips64-linux
• mips64el-linux
• mipsel-linux
• powerpc-linux
• powerpc64-linux
• powerpc64le-linux
• riscv32-linux
• riscv64-linux
• s390-linux
• s390x-linux
• x86_64-linux

Defined

Source