UmVfX1BvaW50's Blog
0%

MAC环境配置

分类于

  • 环境配置

IDA

开代理安装brew

https://brew.sh/

/bin/bash -c “$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)”

brew安装Wineskin

https://github.com/The-Wineskin-Project/WineskinServer

1
2
3
4
5
6
brew update
brew upgrade
brew uninstall --force --zap wineskin
brew uninstall --force --zap gstreamer-runtime
 
brew install --cask --no-quarantine The-Wineskin-Project/wineskin/wineskin

Wineskin创建镜像

img

img

+ –> Download and Install –> Update Wrapper –> Create New Blank Wrapper –> set name –> OK

创建好后view in finder,双击打开

img

IDA安装

Install software –> copy a folder inside,选择IDA所在目录 –> select start exe/bat

img

ok –> Advanced –> Test Run(处理注册表)

img

Tools –> Registry Editor(regedit)

img

注册表修改

  1. HKEY-CURRENT-USER\SOFIWARE\Hex-Rays\IDA目录新建项Python3TargetDLL,值为python dll路径

img

  1. HKEY-LOCAL -MACHINEISYSTEM\CurrentControlSet\Control\session Manager\Environment 的PATH后面添加python路径

img

注册表配置好后kill Wineskin Processes –》Install software

自定义python路径

Download python zip

解压后放到ida的根目录

重命名

编写start bat

1
2
3
@set path=.\python-3;%path%
@set PYTHONPATH=.\python-3
@start ida64.exe

配置注册表

Docker

Install

brew install docker

brew install docker docker-compose

Question: Cannot connect to the Docker daemon at unix:///var/run/docker.sock. Is the docker ...

brew install colima

colima start

执行docker命令

Docker angr

docker search angr

docker pull angr/angr

docker run -it angr/angr

llvm

1
2
3
4
5
6
7
8
9
git clone https://github.com/llvm/llvm-project.git
 
cd llvm-project
 
mkdir build && cd build
 
cmake -DLLVM_ENABLE_PROJECTS=clang -G "Unix Makefiles" -DCMAKE_BUILD_TYPE=Release  ../llvm
 
make -j4

ollvm

1
2
3
4
5
6
git clone
git checkout llvm-9.0.1
mkdir build
cd build
cmake -DCMAKE_BUILD_TYPE=Release -DLLVM_CREATE_XCODE_TOOLCHAIN=OFF ../../obfuscator/
make -j7

use

1
2
3
4
5
6
7
8
9
10
11
12
13
# c to ll
./clang test.cc -S -emit-llvm -O3 -isysroot $(xcrun --show-sdk-path) -o test.ll
# ll to bc
./llvm-as test.ll -o test.bc  
# bc to s
./llc test.bc -o test.s  
# s to exec
./clang++ test.s -o test -stdlib=libc++ -isysroot $(xcrun --show-sdk-path)
# ollvm
# -mllvm -sub 指令替代
# -mllvm -bcf 虚假控制流
# -mllvm -fla 控制流平坦化
./clang++  -std=c++17 rc4.cc -o rc4 -isysroot $(xcrun --show-sdk-path) -arch arm64 -mllvm -fla

Unicorn

brew安装

brew install unicorn

python安装

pip3 install unicorn

编译

如果是mac的m系列芯片的话使用可能会报错bus异常,可以考虑如下解决方案

相关 Github Issue

编译unicorn

git clone https://github.com/unicorn-engine/unicorn.git
mkdir build & cd build
cmake ../../unicorn
make -j

cp file

  • 把build目录的libunicorn.2.dylib libunicorn.a libunicorn.dylib三个文件copy到 python3.x/site-packages/unicorn/lib

JADX内存限制修改

vim bin –> jadx-gui,修改下列内容中的最小和最大内存

DEFAULT_JVM_OPTS=””-Xms128M” “-Xmx8g””