Author: Rylan O'Connell Detects and eliminates dead code in obfuscated binaries.
This plugin attempts to de-obfuscate binaries with "dummy code" injected in them. Leveraging Binary Ninja's API, we can construct a series of def-use chains, isolating the "real" code from the "dummy" code. See the screenshot below for a basic example of this plugin in action:
This plugin requires the following minimum version of Binary Ninja:
- dev - 1.0.dev-576
- release - 9999
The following dependencies are required for this plugin:
- pip - NA
- apt - NA
- installers - NA
- other - NA
This plugin is released under a MIT license.