mirror of
https://github.com/geohot/qira
synced 2025-03-13 18:43:19 +03:00
58 lines
1.2 KiB
Plaintext
58 lines
1.2 KiB
Plaintext
QIRA is an IDA plugin to reverse using QEMU
|
|
|
|
== Installation ==
|
|
|
|
./install.sh should handle everything for both release and trunk
|
|
./fetchlibs.sh will fetch the libraries for armhf, armel, and ppc
|
|
|
|
|
|
== Mouse Actions ==
|
|
|
|
Click on vtimeline to navigate around
|
|
Right click forks to delete them
|
|
|
|
Click on data(or doubleclick if highlightable) to follow in data
|
|
Right click on instruction address to follow in instruction
|
|
|
|
|
|
== Keyboard Shortcuts in web/client/controls.js ==
|
|
|
|
j -- next invocation of instruction
|
|
k -- prev invocation of instruction
|
|
|
|
u -- next toucher of data
|
|
i -- prev toucher of data
|
|
|
|
z -- zoom out max on vtimeline
|
|
|
|
l -- set iaddr to instruction at current clnum
|
|
|
|
left -- -1 fork
|
|
right -- +1 fork
|
|
up -- -1 clnum
|
|
down -- +1 clnum
|
|
|
|
esc -- back
|
|
|
|
shift-c -- clear all forks
|
|
|
|
|
|
== Installation on Windows (experimental) ==
|
|
|
|
Install git
|
|
Install python 2.7.8
|
|
Install pip
|
|
|
|
Run install.bat
|
|
|
|
|
|
== Using CDA ==
|
|
|
|
Pass either --cda or --cda-only to QIRA, or just call "cda binary"
|
|
|
|
The binary must have DWARF data, and the source files must exist on the system
|
|
|
|
Without cda-only, you have to go to localhost:3002/cda
|
|
Everything should be intuitive, except press '/' to regex search
|
|
|