Home

Awesome

ida-scripts

Dumping ground for whatever IDA Pro scripts I write.

##most_refs.py Prints a list of the ten functions which are called by other functions the most. Screenshot ##mem_complexity.py Highlights functions which include a lot of control flow and calls to functions that are on Microsofts banned list (https://msdn.microsoft.com/en-us/library/bb288454.aspx), this is designed as a very rough way of highlighting interesting functions - colors go Red to Blue for least to most interesting. Screenshot ##control_flow.py Renders a .png from a dot graph of the Control Flow Graph of a binary - works by building a full graph of the binaries function calls and then walking the graph from the entry point, in order to find all reachable function calls. Requires pydot and Grapviz to be installed. Screenshot ##export2neo4j.py Exports a binaries function graph to a neo4j instance. Note: super alpha - slow and still missing a lot of data I want, debating what to do with indirect calls etc.