Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

https://github.com/redballoonsecurity/ofrak

OFRAK: unpack, modify, and repack binaries.
https://github.com/redballoonsecurity/ofrak

ctf firmware firmware-tools hacktoberfest repacking reverse-engineering unpacker

Last synced: about 1 month ago
JSON representation

OFRAK: unpack, modify, and repack binaries.

Host: GitHub
URL: https://github.com/redballoonsecurity/ofrak
Owner: redballoonsecurity
License: other
Created: 2022-08-08T17:32:31.000Z (almost 2 years ago)
Default Branch: master
Last Pushed: 2024-05-17T18:17:03.000Z (about 1 month ago)
Last Synced: 2024-05-17T18:46:37.898Z (about 1 month ago)
Topics: ctf, firmware, firmware-tools, hacktoberfest, repacking, reverse-engineering, unpacker
Language: Python
Homepage: https://ofrak.com
Size: 13.8 MB
Stars: 1,803
Watchers: 26
Forks: 127
Open Issues: 78
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE

Lists

awesome-embedded-security - OFRAK - OFRAK is a binary analysis and modification platform that combines the ability to unpack, analyze, modify, and repack binaries. (Software Tools / Binary Parsing and Analysis Tools)
awesome-stars - redballoonsecurity/ofrak
awesome-stars - redballoonsecurity/ofrak - OFRAK: unpack, modify, and repack binaries. (reverse-engineering)
my-stars - redballoonsecurity/ofrak - OFRAK: unpack, modify, and repack binaries. (Python)

README

# OFRAK

OFRAK (Open Firmware Reverse Analysis Konsole) is a binary analysis and modification platform. OFRAK combines the ability to:

- **Identify** and **Unpack** many binary formats
- **Analyze** unpacked binaries with field-tested reverse engineering tools
- **Modify** and **Repack** binaries with powerful patching strategies

OFRAK supports a range of embedded firmware file formats beyond userspace executables, including:

- Compressed filesystems
- Compressed & checksummed firmware
- Bootloaders
- RTOS/OS kernels

OFRAK equips users with:

- A **Graphical User Interface (GUI)** for interactive exploration and visualization of binaries
- A **Python API** for readable and reproducible scripts that can be applied to entire classes of binaries, rather than just one specific binary
- Recursive **identification, unpacking, and repacking** of many file formats, from ELF executables, to filesystem archives, to compressed and checksummed firmware formats
- Built-in, extensible **integration with powerful analysis backends** (angr, Binary Ninja, Ghidra, IDA Pro)
- **Extensibility by design** via a common interface to easily write additional OFRAK components and add support for a new file format or binary patching operation

See [ofrak.com](https://ofrak.com) for more details.

## GUI Frontend

The web-based GUI view provides a navigable resource tree. For the selected resource, it also provides: metadata, hex or text navigation, and a mini map sidebar for quickly navigating by entropy, byteclass, or magnitude. The GUI also allows for actions normally available through the Python API like commenting, unpacking, analyzing, modifying and packing resources.

## Getting Started

**OFRAK uses Git LFS. This means that you must have Git LFS installed before you clone the repository!** Install Git LFS by following [the instructions here](https://git-lfs.github.com/). If you accidentally cloned the repository before installing Git LFS, `cd` into the repository and run `git lfs pull`.

See [`docs/environment-setup`](https://ofrak.com/docs/environment-setup.html) for detailed instructions on how to install OFRAK.

## Documentation

OFRAK has general documentation and API documentation. Both can be viewed at [ofrak.com/docs](https://ofrak.com/docs).

If you wish to make changes to the documentation or serve it yourself, follow the directions in [`docs/README.md`](docs/README.md).

## License

The code in this repository comes with an [OFRAK Community License](LICENSE), which is intended for educational uses, personal development, or just having fun.

Users interested in OFRAK for commercial purposes can request the Pro or Enterprise License. See [OFRAK Licensing](https://ofrak.com/license/) for more information.

## Contributing

Red Balloon Security is excited for security researchers and developers to contribute to this repository.

For details, please see our [contributor guide](CONTRIBUTING.md) and the [Python development guide](docs/contributor-guide/getting-started.md).

## Support

Please contact [[email protected]](mailto:[email protected]), or write to us on [the OFRAK Slack](https://join.slack.com/t/ofrak/shared_invite/zt-1jku9h6r5-mY7CeeZ4AT8JVmu5YWw2Qg) with any questions or issues regarding OFRAK. We look forward to getting your feedback! Sign up for the [OFRAK Mailing List](https://ofrak.com/sign-up) to receive monthly updates about OFRAK code improvements and new features.

---

*This material is based in part upon work supported by the DARPA under Contract No. N66001-20-C-4032. Any opinions, findings and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the DARPA. Distribution Statement “A” (Approved for Public Release, Distribution Unlimited).*