rizinorg/cutter-plugins rizinorg/cutter-plugins

  • Stars
    star
    245
  • Rank 159,120 (Top 4 %)
  • Language
  • Created about 5 years ago
  • Updated over 1 year ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
rizinorg/cutter-plugins
github

rizinorg

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A curated list of Community Plugins and Scripts written for Cutter

Cutter Plugins

This is a curated list of Plugins and Scripts written for the reverse engineering platform - Cutter.

Want to build your own Plugin for Cutter, or to port an existing one from other disassemblers? It is easy! Follow the tutorial in the official documentation: https://cutter.re/docs/plugins.html

Table of Contents

Decompilers

Ghidra Decompiler

This is an integration of the Ghidra decompiler for Cutter and rizin. It is solely based on the decompiler part of Ghidra, which is written entirely in C++, so neither Ghidra itself nor JAVA are required at all and the plugin can be built self-contained.

Due to its quality, the ghidra decompiler plugin is shipped by default in Cutter releases.

Type: Plugin
Status: Maintained

RetDec Decompiler

The plugin integrates RetDec decompiler into Cutter.

With the bundled version of RetDec you can decompile the following architectures:

  • 32-bit: Intel x86, ARM, MIPS, PIC32, and PowerPC.
  • 64-bit: x86-64, ARM64 (AArch64).

Type: Plugin
Status: Maintained

jsdec

JSdec converts the assembly of a function to a Pseudo-C code. Cutter integrates jsdec by default.

Type: Plugin
Status: Maintained
Talk: How not to write a decompiler - r2con 2018

Integrations

Jupyter Plugin

This plugin integrates the Jupyter notebook inside Cutter

Status: Maintained

x64dbgcutter

Allows the import and export of x64dbg comments and breakpoints in Cutter

Status: Maintained

Yara Plugin

A Cutter plugin to match project with Yara rules at runtime.

Status: Maintained

Hyara

Hyara is a plugin that makes it convenient to write and test Yara rules from inside Cutter.

Type: Plugin
Status: WIP

AngrCutter

A plugin that adds dynamic symbolic execution to Cutter's debugger using Angr.

Status: Maintained

Hobbits Plugin

A plugin that adds Hobbits displays to Cutter.

Status: WIP

Capa Explorer

Capa is a framework that uses a well-defined collection of rules to identify capabilities in a program. You can run the plugin against a PE file or shellcode and it tells you what it thinks the program can do.

Type: Plugin
Status: Maintained

Malware Analysis

APT32 Graph Deobfuscator

A plugin for Cutter and Radare2 to deobfuscate APT32 flow graphs This is a python plugin for Cutter that is compatible as an r2pipe script for radare2 as well. The plugin will help reverse engineers to deobfuscate and remove junk blocks from APT32 (Ocean Lotus) samples.

Type: Plugin
Status: Maintained
Article: APT32 Flow Graphs with Cutter and Radare2

Dropshot / StoneDrill Decrypter

This is an r2pipe based script that is used to decrypt strings and resources in the Dropshot APT malware.

Type: Script
Status: Maintained
Articles:

Deobfuscate Bitpaymer API Calls

Deobfuscation script of API calls in Bitpaymer (v2)

Type: Script
Reference: https://twitter.com/FraMauronz/status/1005138478261309440

Coverage

CutterDRcov

CutterDrcov is code coverage plugin that visualizes DynamoRIO drcov into Cutter static analysis.

Type: Plugin
Status: Maintained

Cutter Lighthouse

This is still a work in progress on this Pull Request.

Type: Plugin
Status: WIP

Enhancements

CutterRef

Cutter Full Instruction Reference Plugin. The plugin will monitor the location for your cursor and display the full documentation of the instruction. At the moment it only supports x86-64, ARM and MIPS 32bit, however adding support for other architectures is relatively easy.

Type: Plugin
Status: Maintained

Assembly-reference

A plugin for Cutter that shows the information about the assembly instruction currently selected (only for x86 and x64)

Type: Plugin
Status: Maintained

Recovering Stack Strings

Cutter script to comment value of strings that were manually created on the stack.

Type: Script
Status: Maintained

Graphs

Cutter Deep Graphs

A Cutter plugin to generate radare2 graphs. It also provides a new graph called Deep callgraph, which builds an in-depth callgraph from the current function, adding recursively its callees' callings.

Type: Plugin
Status: Maintained

Misc

Cutter plugin templates

Python and C++ sample plugins to start with.

Type: Plugin
Status: Maintained

More Repositories

1

cutter

Free and Open Source Reverse Engineering Platform powered by rizin
C++
14,872
star
2

rizin

UNIX-like reverse engineering framework and command-line toolset.
C
2,332
star
3

rz-ghidra

Deep ghidra decompiler and sleigh disassembler integration for rizin
C++
783
star
4

book

An official book about Rizin
CSS
61
star
5

CutterDRcov

DynamoRIO coverage visualization for cutter
Python
57
star
6

jsdec

Simple decompiler for Rizin
C
40
star
7

rz-libmc7

Library to disassemble MC7 bytecode for Siemens PLC SIMATIC S7-300 and S7-400
C
36
star
8

rz-pipe

Access rizin via pipe from any programming language!
Python
28
star
9

sigdb

Rizin FLIRT Signature Database
Meson
26
star
10

cutter-jupyter

Jupyter Plugin for Cutter
Python
24
star
11

rz-retdec

RetDec Decompiler Plugin for Rizin
C++
23
star
12

rz-pm

An official Rizin package manager
Go
15
star
13

rz-hexagon

Hexagon disassembler code generator for Rizin from the official instruction manual.
Python
11
star
14

sigdb-source

Rizin Signature Database (Source)
11
star
15

rz-libyara

Rizin libyara wrapper & core plugin for creating, parsing and applying YARA rules.
C
9
star
16

rizin-extras

Community plugins for Rizin
C
8
star
17

rz-tracetest

Testing of RzIL against real traces
C++
8
star
18

rz-silhouette

Rizin client plugin for the Rizin Silhouette Server
C
7
star
19

sdb

Simple string-based Key/Value database
C
7
star
20

rz-silhouette-server

Rizin Silhouette Symbol Server
Go
7
star
21

rz-bindgen

Python
6
star
22

rz-lang

RzLang extensions for implementing Rizin plugins in other languages
C
6
star
23

rz-libdemangle

Rizin Library to demangle symbols
C
5
star
24

cutter-deps

Makefile
5
star
25

website

This repository holds the raw sources and content of Rizin's website: https://rizin.re
HTML
5
star
26

rizin-testbins

Max
5
star
27

rz-pm-db

4
star
28

rz-asm-llvm

LLVM-based assembler plugin for Rizin
C++
4
star
29

rz-rzilcompiler

C to RZIL Compiler to extend the Rizin Hexagon plugin.
C
4
star
30

ideas

Features that would be nice to have but they are not in the roadmap
3
star
31

sigdb-tools

Rizin Signature Database Tools
Python
2
star
32

rizin-notebook

A notebook where to writes notes while using rizin!
Go
2
star
33

cutter.re

The Cutter website
SCSS
2
star
34

test-pdb-repository

PDB repository for the testsuite to lower the number of fails due windows symbol server not being available.
1
star
35

rz-libswift

Swift Demangling library
C++
1
star
36

vice

VICE Emulator emitting bap-frames traces
C
1
star
37

rizin-pm

Shell
1
star