Skip to content

CristiSima/e8patch

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
src
src
 
 
test
test
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
requerments.txt
requerments.txt
 
 

Repository files navigation

E8Patch

E8Patch is a static binary rewriting tool for replacing function calls.

Features:  

  • Compatible: The rewritten binary is a drop-in replacement of the original, maintaining its structure without adding dependencies.
  • Intuitive: Easy to use with patches written in C as normal functions

Just like e9patch is named so after the relative jump instruction identifier on x86, e8 is the relative call instruction identifier.

Usage

e8patch target patch.c -o patched

Patch example:

int f2();
#pragma replace f2 old=f2 new:f2_plus_10
int f2_plus_10()
{
  return f2() + 10;
}

Examples

Test cases can be used as an example.

Docs

Argparse's help menu: python src -h

Patch replacement instructions:

#pragma replace <target> [old=ref_to_old_implementation] new=<name_of_new_function>

Testing

Each test case contains:

  • target binary source code
  • patch
  • patched source code
  • a regex to match the expected output

Libraries

Uses Capstone and a fork of ELF Esteem mantined mantained by LRGH

License

This software has been released under the GNU General Public License (GPL) Version 2.0.

About

ELF static patching tool for function replacement.

Resources

Readme

License

GPL-2.0 license
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages