Results 1 to 6 of 6

Thread: ERESI

  1. #1
    [angst]
    Guest

    ERESI

    Bye ELFsh, Hi ERESI

    Presentation
    The ERESI Reverse Engineering Software Interface is a unified multi-architecture binary analysis framework targeting operating systems based on the Executable & Linking Format (ELF) such as Linux, *BSD, Solaris, HP-UX, IRIX and BeOS.

    ERESI is a general purpose hybrid framework : it includes both static analysis and runtime analysis capabilities. These features are accessed by primitives of the ERESI reverse engineering language which makes the framework more adaptable to the precise needs of her users. It brings an environment of choice for program analysis throught instrumentation, debugging, and tracing as it also provides more than ten exclusive major built-in features . ERESI can also be used for security auditing, hooking, integrity checking or logging binary programs. The project prones modularity and reusability of code and allows users to create their own project on top of the ERESI language interpreter in just a few lines. Among other features, the base code can display program graphs on demand using its automated flow analysis primitives. Our tools are enhanced for hardened or raw systems which have no executable data segments and no native debug API or even explicit program information.

    The ERESI framework includes:

    * The ELF shell (elfsh), an interactive and scriptable ERESI interpreter dedicated to instrumentation of ELF binary files.
    * The Embedded ELF debugger (e2dbg), an interactive and scriptable high-performance userland debugger that works without standard debug API (namely without ptrace).
    * The Embedded ELF tracer (etrace), an interactive and scriptable userland tracer that works at full frequency of execution without generating traps.
    * The Kernel shell (kernsh), an interactive and scriptable userland ERESI interpreter to inject code and data in the OS kernel, but also infer, inspect and modify kernel structures directly in the ERESI language.
    * The Evarista static analyzer, a work in progress ERESI interpreter for program transformation and data-flow analysis of binary programs directly implemented in the ERESI language (no web page yet).

    Beside those top-level components, the ERESI framework contains various libraries that can be used from one of the previously mentioned tools, or in a standalone third-party program:

    * libelfsh : the binary manipulation library on which ELFsh, E2dbg, and Etrace are based.
    * libe2dbg : the embedded debugger library which operates from inside the debuggee program.
    * libasm : the disassembly engine (x86 and sparc) that gives semantic attributes to instructions and operands.
    * libmjollnir : the code fingerprinting and graph manipulation library.
    * librevm : the Reverse Engineering Vector Machine, that contains the meta-language interpretor and the standard ERESI library.
    * libaspect : the type system and aspect library. It can define complex data-types to be manipulated ad-hoc by ERESI programs.
    * libedfmt : the ERESI debug format library which can convert dwarf and stabs debug formats to the ERESI debug format by automatically generating new ERESI types.
    http://www.eresi-project.org/
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  2. #2
    Naides is Nobody
    Join Date
    Jan 2002
    Location
    Planet Earth
    Posts
    1,647
    Thank you for the info [Angst]!
    (And the Asimov quote, by the way. . .)

  3. #3
    Administrator dELTA's Avatar
    Join Date
    Oct 2000
    Location
    Ring -1
    Posts
    4,204
    Blog Entries
    5
    Hey [angst], thanks for the info and welcome to the board. We could really use some more Linux reversing people around here, it's been a little dry on that front lately, so please stick around and keep posting as desired.
    "Give a man a quote from the FAQ, and he'll ignore it. Print the FAQ, shove it up his ass, kick him in the balls, DDoS his ass and kick/ban him, and the point usually gets through eventually."

  4. #4
    And another welcome to the board.

    Enjoyed reading a great many of Asimov"s books in my younger years.

    Regards,
    JMI

  5. #5
    Registered User
    Join Date
    Dec 2001
    Location
    The Matrix
    Posts
    108
    ERESI will be added to Damn Vulnerable Linux as well which is published end of January 2008
    The dark side of the force is the pathway to many abilities, some considered to be unnatural
    Is it possible to learn this power?
    Not for a Jedi...

  6. #6
    Administrator dELTA's Avatar
    Join Date
    Oct 2000
    Location
    Ring -1
    Posts
    4,204
    Blog Entries
    5
    And it is of course also already cataloged and trackable in the CRCETL:

    http://www.woodmann.com/collaborative/tools/index.php/ERESI_Framework

    "Give a man a quote from the FAQ, and he'll ignore it. Print the FAQ, shove it up his ass, kick him in the balls, DDoS his ass and kick/ban him, and the point usually gets through eventually."

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •