asatools
Main repository to pull all Cisco ASA-related projects.
Installation
Even though some sub projects can be used independently, we recommend to pull all subprojects using the simple command:
git clone --recursive https://github.com/nccgroup/asatools
There are several env.sh
in the respective subprojects but you
only need to modify one of them.
For instance modify asatools/asadbg/env.sh
to match your environment.
Then execute the following:
source /path/to/asatools/asadbg/env.sh
Note: You can add the line above to your ~/.bashrc
as well if you want.
Documentation
Refer to the respective sub-projects for their documentation:
- asafw: deal with ASA firmware
- asadbg: debug ASA on real or virtual environment
- libdlmalloc: analyse dlmalloc chunks
- libptmalloc: analyse ptmalloc chunks
- libmempool: analyse mempool headers
- idahunt: hunt for symbols
- ret-sync: synchronise asadbg and IDA Pro
You can also refer to this tutorial for a way to setup your own virtualised Cisco ASA in GNS3 that you can debug with the tools above.
A series of blog posts has also been published here.