rizinorg/cutter-plugins rizinorg/cutter-plugins

  • Stars
    star
    254
  • Rank 160,264 (Top 4 %)
  • Language
  • Created over 5 years ago
  • Updated about 2 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
rizinorg/cutter-plugins
github

rizinorg

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A curated list of Community Plugins and Scripts written for Cutter

Cutter Plugins

This is a curated list of Plugins and Scripts written for the reverse engineering platform - Cutter.

Want to build your own Plugin for Cutter, or to port an existing one from other disassemblers? It is easy! Follow the tutorial in the official documentation: https://cutter.re/docs/plugins.html

Table of Contents

Decompilers

Ghidra Decompiler

This is an integration of the Ghidra decompiler for Cutter and rizin. It is solely based on the decompiler part of Ghidra, which is written entirely in C++, so neither Ghidra itself nor JAVA are required at all and the plugin can be built self-contained.

Due to its quality, the ghidra decompiler plugin is shipped by default in Cutter releases.

Type: Plugin
Status: Maintained

RetDec Decompiler

The plugin integrates RetDec decompiler into Cutter.

With the bundled version of RetDec you can decompile the following architectures:

  • 32-bit: Intel x86, ARM, MIPS, PIC32, and PowerPC.
  • 64-bit: x86-64, ARM64 (AArch64).

Type: Plugin
Status: Maintained

jsdec

JSdec converts the assembly of a function to a Pseudo-C code. Cutter integrates jsdec by default.

Type: Plugin
Status: Maintained
Talk: How not to write a decompiler - r2con 2018

Integrations

Jupyter Plugin

This plugin integrates the Jupyter notebook inside Cutter

Status: Maintained

x64dbgcutter

Allows the import and export of x64dbg comments and breakpoints in Cutter

Status: Maintained

Yara Plugin

A Cutter plugin to match project with Yara rules at runtime.

Status: Maintained

Hyara

Hyara is a plugin that makes it convenient to write and test Yara rules from inside Cutter.

Type: Plugin
Status: WIP

AngrCutter

A plugin that adds dynamic symbolic execution to Cutter's debugger using Angr.

Status: Maintained

Hobbits Plugin

A plugin that adds Hobbits displays to Cutter.

Status: WIP

Capa Explorer

Capa is a framework that uses a well-defined collection of rules to identify capabilities in a program. You can run the plugin against a PE file or shellcode and it tells you what it thinks the program can do.

Type: Plugin
Status: Maintained

Malware Analysis

APT32 Graph Deobfuscator

A plugin for Cutter and Radare2 to deobfuscate APT32 flow graphs This is a python plugin for Cutter that is compatible as an r2pipe script for radare2 as well. The plugin will help reverse engineers to deobfuscate and remove junk blocks from APT32 (Ocean Lotus) samples.

Type: Plugin
Status: Maintained
Article: APT32 Flow Graphs with Cutter and Radare2

Dropshot / StoneDrill Decrypter

This is an r2pipe based script that is used to decrypt strings and resources in the Dropshot APT malware.

Type: Script
Status: Maintained
Articles:

Deobfuscate Bitpaymer API Calls

Deobfuscation script of API calls in Bitpaymer (v2)

Type: Script
Reference: https://twitter.com/FraMauronz/status/1005138478261309440

Coverage

CutterDRcov

CutterDrcov is code coverage plugin that visualizes DynamoRIO drcov into Cutter static analysis.

Type: Plugin
Status: Maintained

Cutter Lighthouse

This is still a work in progress on this Pull Request.

Type: Plugin
Status: WIP

Enhancements

CutterRef

Cutter Full Instruction Reference Plugin. The plugin will monitor the location for your cursor and display the full documentation of the instruction. At the moment it only supports x86-64, ARM and MIPS 32bit, however adding support for other architectures is relatively easy.

Type: Plugin
Status: Maintained

Assembly-reference

A plugin for Cutter that shows the information about the assembly instruction currently selected (only for x86 and x64)

Type: Plugin
Status: Maintained

Recovering Stack Strings

Cutter script to comment value of strings that were manually created on the stack.

Type: Script
Status: Maintained

Graphs

Cutter Deep Graphs

A Cutter plugin to generate radare2 graphs. It also provides a new graph called Deep callgraph, which builds an in-depth callgraph from the current function, adding recursively its callees' callings.

Type: Plugin
Status: Maintained

Misc

Cutter plugin templates

Python and C++ sample plugins to start with.

Type: Plugin
Status: Maintained

More Repositories

1

cutter

Free and Open Source Reverse Engineering Platform powered by rizin
C++
15,706
star
2

rizin

UNIX-like reverse engineering framework and command-line toolset.
C
2,579
star
3

rz-ghidra

Deep ghidra decompiler and sleigh disassembler integration for rizin
C++
809
star
4

book

An official book about Rizin
CSS
69
star
5

CutterDRcov

DynamoRIO coverage visualization for cutter
Python
59
star
6

jsdec

Simple decompiler for Rizin
C
47
star
7

rz-libmc7

Library to disassemble MC7 bytecode for Siemens PLC SIMATIC S7-300 and S7-400
C
39
star
8

sigdb

Rizin FLIRT Signature Database
Meson
34
star
9

rz-pipe

Access rizin via pipe from any programming language!
Python
33
star
10

rz-retdec

RetDec Decompiler Plugin for Rizin
C++
27
star
11

cutter-jupyter

Jupyter Plugin for Cutter
Python
24
star
12

rz-pm

An official Rizin package manager
Go
16
star
13

rz-hexagon

Hexagon disassembler code generator for Rizin from the official instruction manual.
Python
11
star
14

sigdb-source

Rizin Signature Database (Source)
11
star
15

rz-libyara

Rizin libyara wrapper & core plugin for creating, parsing and applying YARA rules.
C
9
star
16

rz-silhouette

Rizin client plugin for the Rizin Silhouette Server
C
8
star
17

rizin-extras

Community plugins for Rizin
C
8
star
18

rz-tracetest

Testing of RzIL against real traces
C++
8
star
19

rz-bindgen

Python
7
star
20

sdb

Simple string-based Key/Value database
C
7
star
21

rz-silhouette-server

Rizin Silhouette Symbol Server
Go
7
star
22

rizin-testbins

C
7
star
23

rz-libdemangle

Rizin Library to demangle symbols
C
6
star
24

rz-lang

RzLang extensions for implementing Rizin plugins in other languages
C
6
star
25

rz-pm-db

5
star
26

cutter-deps

Makefile
5
star
27

website

This repository holds the raw sources and content of Rizin's website
HTML
5
star
28

rz-rzilcompiler

C to RZIL Compiler to extend the Rizin Hexagon plugin.
C
4
star
29

rz-asm-llvm

LLVM-based assembler plugin for Rizin
C++
4
star
30

ideas

Features that would be nice to have but they are not in the roadmap
3
star
31

sigdb-tools

Rizin Signature Database Tools
Python
2
star
32

rizin-notebook

A notebook where to writes notes while using rizin!
Go
2
star
33

cutter.re

The Cutter website
SCSS
2
star
34

test-pdb-repository

PDB repository for the testsuite to lower the number of fails due windows symbol server not being available.
1
star
35

rz-libswift

Swift Demangling library
C++
1
star
36

vice

VICE Emulator emitting bap-frames traces
C
1
star
37

rizin-pm

Shell
1
star