Dewdrop.Analyze

Contents

Finding gadgets
Configuring the gadget finder

Description

Analyze the ROP gadgets in an ELF binary.

Use this module if you need more control, or integration with a larger program. The module Dewdrop provides a simpler way to put together a standalone gadget finder.

Synopsis

Finding gadgets

newtype Gadget Source

A sequence of instructions, each with metadata.

The Show instance produces assembly code with labeled offsets, so you can print these directly.

Constructors

Gadget [Metadata]

Instances

Eq Gadget
Data Gadget
Ord Gadget
Show Gadget
Typeable Gadget

gadgets :: Elf -> [Gadget]Source

Find possible gadgets.

You can filter these further using valid or other tests.

valid :: Gadget -> Bool Source

Rejects gadgets which are probably not useful for return-oriented programming. This includes gadgets containing invalid or privileged instructions.

Configuring the gadget finder

data Config Source

Configuration of the gadget finder.

Constructors

Config
Fields cfgSyntax :: Syntax Assembly syntax for display cfgVendor :: Vendor CPU vendor; affects decoding of a few instructions cfgMaxSize :: Int Maximum size of a gadget, in bytes

Instances

Eq Config
Data Config
Ord Config
Read Config
Show Config
Typeable Config

defaultConfig :: Config Source

Default configuration of the gadget finder.

gadgetsWith :: Config -> Elf -> [Gadget]Source

Find possible gadgets, using a custom configuration.