This tool can help you visualize binary entropy value per block into graphic file.
Currently, we only support in Linux.
What things you need to use tool, you have to install following package
$ apt-get install libpng12-dev:i386
$ cd src
$ make
Blue color indicates the entropy is low and Red color means entropy value is high in the blok.
Blue block is homogeneous block
Red block is heterogeneous block
$ ./vent --help
Vent v.0.1, an entropy level measurement tool for ELF
Usage: ./vent [OPTIONS]
Options:
-h,--help Print this help message and exit
-f,--file FILE REQUIRED file for information visualization
-o,--output TEXT output graphic format, default is png
-i,--info TEXT information extraction method, default is entropy
-b,--block enum/Block in {b8=8, b16=16, b32=32}
Block size
$ ./vent -f vent -s 256 && eog vent.png
$ ./vent -f vent -s 64 -b 8 && eog vent.png
- ELF parser
- PE parser
- CMAKE
- UT
- ...
- Lattice Chang
This project is licensed under the MIT License - see the LICENSE.txt file for details.
- Thanks for youtuber GynvaelEN inspire me to implement this tool.