HexraysToolbox enables users to find and analyze specific code patterns within Hex-Rays decompiled ctree structures to aid reverse engineering and vulnerability research.
Hexrays Toolbox - Find code patterns within the Hexrays ctree
This tool is primarily used by reverse engineers and security researchers who work with Hex-Rays decompiler to identify and analyze code patterns in decompiled binaries. It helps automate the detection of vulnerabilities or interesting code constructs by querying the Hex-Rays ctree representation, improving efficiency during binary analysis.
Requires Hex-Rays decompiler plugin for IDA Pro to function. Users should be familiar with Hex-Rays ctree structures and IDA scripting to effectively utilize this tool.
Clone the repository: git clone https://github.com/patois/HexraysToolbox.git
Open IDA Pro with Hex-Rays decompiler installed
Place HexraysToolbox scripts in the IDA plugins or scripts directory
Load the toolbox within IDA to access its functionalityht.search(pattern)
Searches the Hex-Rays ctree for the specified code pattern.
ht.find_all(pattern)
Finds all occurrences of a given pattern within the decompiled code.
ht.highlight(node)
Highlights a matched node in the Hex-Rays decompiler view.