You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This Python package is a collection of modules to allow easier interactive use of angr for learning and prototyping angr.
All features are designed for the use of angr in an interactive environment like an IPython shell or a Jupyter environment (both CLI and Notebook), but some will still work in a simple Python shell or script.
Using a font that supports Ligatures like JetBrains Mono is recommended to make
the output more pleasant to read.
Install
PyPi
A stable version is available on PyPi.
pip install angrcli
Dev
In case you want a development install of this, run this in a folder of your choice (e.g. your angr-dev repo) after activating your angr virtual environment
git clone https://github.com/fmagin/angr-cli.git
cd angr-cli
pip install -e ./
General Usage
To import and setup all features:
importangrcli.full
This will take care of importing and registering the plugins.
Core Features
State View Plugin
The Context View plugin allows rendering of a state in a view similiar to that provided by GDB plugins like GEF or pwndbg.
Usage
importangr# This line registers the plugin and makes it available on each stateimportangrcli.plugins.ContextViewproj=angr.Project("/bin/ls", load_options={"auto_load_libs":False})
state=proj.factory.entry_state()
# Print the statestate.context_view.pprint()
Interactive Exploration
The Interactive Exploration is a Python CMD wrapper around a Simulation Manager that provides shortcuts for various common operations, like stepping blocks, running until a symbolic branch or manually selecting successors.
This can either be used in a script, or inside an IPython shell. The latter allows rapid switching between the wrapper to access the shortcuts and the IPython shell for more complex operations.
Usage
importangrimportangrcli.plugins.ContextViewfromangrcli.interaction.exploreimportExploreInteractiveproj=angr.Project("/bin/ls", load_options={"auto_load_libs":False})
state=proj.factory.entry_state()
# For quick but less flexible access (state isn't modified)state.explore()
# state.explore() basically just does the following on each calle=ExploreInteractive(proj, state)
e.cmdloop()
Demo
Misc
AST Preview
angrcli.ast.rendering provides render_ast which uses graphviz to generate a SVG representation of an AST which can be displayed instead of the __repr__ method of the AST object.
