Hacker News new | past | comments | ask | show | jobs | submit login

> The support for radare is abysmal and not even merged

mcsema takes a CFG as input, so really someone just has to wire up radare to emit that CFG and it will just work. I don't seen an active PR to merge that in for radare.

Control flow analysis is a problem I love working on, but it has a large share of thorny issues that either need to be solved with deep theoretical thought or an ocean of tiny hacks. Tools like IDA already have that ocean of hacks. When I was working on making the control flow analysis better, collaborators (and customers) would reply with annoyance that this was a problem whose solution was already approximated by other tools, so why not use them?

If I could find someone to pay me to work on open source control flow analysis for binaries, and I had the time, I'd do it. Mysteriously, the people that can pay, are happy just paying a little extra to start using the CFA results that IDA gives them already and having their money get spent on new work that isn't re-inventing what IDA and Binja can do. Maybe I should set up a Patreon.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: