“Capstone will soon be the standard disassembly engine”. “Capstone has changed the Reverse Engineering landscape: We finally have a solid, independent, and free disassembler engine”. “Capstone is something people have wanted for years the value is apparent in the implementation, and it’s nice to finally have an industry standard for this”. Some of the reasons making Capstone unique are elaborated here.įind in this Blackhat USA 2014 slides more technical details behind our disassembly engine. High performance & suitable for malware analysis (capable of handling various X86 malware tricks).ĭistributed under the open source BSD license. Special support for embedding into firmware or OS kernel. Native support for Windows & *nix (with Mac OSX, iOS, Android, Linux, *BSD & Solaris confirmed). Implemented in pure C language, with bindings for D, Clojure, F#, Common Lisp, Visual Basic, PHP, PowerShell, Haskell, Perl, Python, Ruby, C#, NodeJS, Java, GO, C++, OCaml, Lua, Rust, Delphi, Free Pascal & Vala available. Provide some semantics of the disassembled instruction, such as list of implicit registers read & written. Provide details on disassembled instruction (called “decomposer” by some others). Multi-architectures: ARM, ARM64 ( ARMv8), BPF, Ethereum VM, M68K, M680X, Mips, MOS65XX, PowerPC, RISC-V, SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86 (16, 32, 64).Ĭlean/simple/lightweight/intuitive architecture-neutral API. Our target is to make Capstone the ultimate disassembly engine for binary analysis and reversing in the security community. Capstone is a lightweight multi-platform, multi-architecture disassembly framework.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |