05 Mar 2016

radare2 Cheat Sheet

Here’s a few commands I’ve found useful while learning the radare2 tool set.

radare2/r2

List functions

afl

Disassemble function:

aa

pdr@main

Print call graph:

agc > /tmp/foo.dot xdot /tmp/foo.dot

Print a detailed graph:

ag $$ > /tmp/c2.dot

Disassemble instruction:

pD 2

Seek to a specific memory location:

s 0x08048470

Write hex value:

wx eb

Debugging/Visual Mode

https://radare.gitbooks.io/radare2book/content/introduction/basic_debugger_session.html

r2 -d ./file

Set breakpoint

db 0x00401383

Remove breakpoint

db -0x00401383

List breakpoints

[0x00401383]> db 0x00401383 - 0x004013841 --x sw break enabled cmd="" name="0x00401383"

Continue

dc

Switch to Visual Mode

V

Cycle through Visual modes

p

Step through code

s

Switch to graph view (in Visual Mode)

V

Misc

strings

rabin2 -z file

Pattern generation

ragg2 -p 300 -r

Get assembly instruction

rasm2 -a x86 -b 32 'jmp 16'

Tags:
comments powered by Disqus