InsecureFunctionFinder

Project Url: Xenios91/InsecureFunctionFinder
Introduction: A Ghidra plugin to automatically find known insecure functions and will create a bookmark to quickly traverse to that location for review.
More: Author   ReportBugs   
Tags:

General Information

  • Author: Corey Hartman
  • Language: Java 17 (should be compatible with Java 8+, as no features I believe above 8 were utilized)
  • Description: A Ghidra plugin to automatically find known insecure functions and will create a bookmark to quickly traverse to that location for review.
  • Currently works for the following functions: atoi, atol, atoll, exec, gets, memcpy, printf, sprintf, strcat, strcpy, strlen, strncpy, system, vsprintf

Installation/Compilation

  • Requires Ghidra
  • Just place this script in your Ghidra plugins folder, which can be created by selecting "Manage Script Directories" in Ghidras Script Manager.
  • Note: This was tested on Ghidra 10.4.1, older versions may not work as intended.

Utilization

  1. Perform analysis with Ghidra.
  2. Open Ghidra's Script Manager.
  3. Double Click InsecureFunctionFinder.java
  4. Open Bookmarks to review discovered insecure functions.

Highly Recommended:Google Play 4.7 Star Android Developer Tools, Decompile, View Manifest, Open Debug Options Quickly

Apps
Android Developer Tools
Android Developer Tools Pro
About Me
Tools: TimeShining
GitHub: Trinea
Facebook: Dev Tools