Expand description
§bn-bdash-extras
An assortment of helpers that I’ve found to be useful when writing Binary Ninja plug-ins in Rust.
§Activity configuration
Type-safe builders for defining the configuration for an Activity
can be found in the activity module.
let workflow = workflow.clone_to(&workflow.name());
let config = Config::action(
"bdash.arm64e-pac",
"Remove explicit arm64e PAC checks",
"Remove explicit arm64e pointer authentication checks prior to tail calls",
)
.with_eligibility(
Eligibility::auto()
.with_predicate(ViewType::In(&["Mach-O", "DSCView", "KCView"]))
);
let activity = Activity::new_with_action(&config.to_string(), remove_arm64e_pac);
workflow.register_activity(&activity).unwrap();§LLIL instruction matching
Types and macros to simplify matching over
LowLevelILInstruction
and LowLevelILExpression
can be found in the llil module.
match_instr!{
instr,
// Basic patterns
CallSsa(ConstPtr(address), _) => println!("Direct call to {:#x}", address),
// Variable bindings and guards
instr @ SetRegSsa(dest, add @ Add(RegSsa(src), Const(value))) if value > 10 => {
println!(
"Increment of {src:?} by {value} > 10 at {:#x} (dest={dest:?}, add={add:?})",
instr.address(),
);
},
// OR patterns
CallSsa(_, _) | TailCallSsa(_, _) => println!("Function call"),
_ => {}
};Modules§
- activity
- A type-safe representation of a workflow activity configuration
- llil
- More ergonomic matching over Binary Ninja’s
low_level_iltypes