模板代码

准备#

# IDA default imports
# ====================================
import sys
sys.path.append("/opt/ida-pro/python")
import ida_bytes
import ida_dbg
import ida_entry
import ida_funcs
import ida_ida
import ida_idaapi
import ida_idd
import ida_idp
import ida_kernwin
import ida_loader
import ida_nalt
import ida_name
import ida_netnode
import ida_segment
import ida_strlist
import ida_typeinf
import ida_ua
import ida_xref

import idc
import types
import os
import sys
# ====================================

找出指定指令#

import idautils

start_ea = 0x100
end_ea = 0x9A0

for head in idautils.Heads(start_ea, end_ea):
    dism = idc.GetDisasm(head)
    if "syscall" in dism:
        print("%08X: %s" % (head, dism))

模板代码

准备#

找出指定指令#

On This Page