Full featured multi arch/os debugger built on top of PyQt5 and frida

Last update: Dec 26, 2022

Overview

Dwarf

A debugger for reverse engineers, crackers and security analyst. Or you can call it damn, why are raspberries so fluffy or yet, duck warriors are rich as fuck. Whatever you like! Built on top of pyqt5, frida and some terrible code.

Known Issues

JavaTraceView is distorted
JavaTraceView shows weakref/handle instead of value

We are working on Dwarf 2.0 release

Installation

pip3 install dwarf-debugger

Development

pip3 install https://github.com/iGio90/Dwarf/archive/master.zip

Usage

Debugging UI (attach wizard)

dwarf

Debugging UI (straightforward)

dwarf -t android com.facebook.katana
dwarf -t android 2145
dwarf -t ios 2145
dwarf -t local /usr/bin/cat /etc/shadow

Debugging UI (own agent)

dwarf -t android -s /path/to/agent.js com.facebook.katana
dwarf -t local -s /path/to/agent.js /usr/bin/cat /etc/shadow

Dwarf typings + injector

$ dwarf-creator
project path (/home/igio90/test):
> 
project name (test):
> 
Session type (local)
[*] L (local)
[*] A (android)
[*] I (iOS)
[*] R (remote)

append i to use dwarf-injector (ai | android inject)
> ai
target package (com.whatsapp)
> com.whatsapp

$ (./intelliJ || ./vsCode).open(/home/igio90/test)
    .echo('enjoy scripting with frida and dwarf api autocompletition and in-line doc')

$ ./dwarf if myOs == 'unix' else 'dwarf.bat'

Dwarf trace

dwarf-trace -t android --java java.io.File.$init com.facebook.katana

* Trying to spawn com.facebook.katana
* Dwarf attached to 19337
java.io.File $init
    /data  - java.io.File
    misc

java.io.File $init
    /data/misc  - java.io.File
    user

...

dwarf-trace -t android --native --native-registers x0,x1,sp open+0x32
dwarf-trace -t android --native --native-registers x0,x1,sp [email protected]
dwarf-trace -t android --native --native-registers x0,x1,sp 0xdc00d0d0
dwarf-trace -t android --native --native-registers x0,x1,sp popen

Javascript | License | Become a patron | Slack

Full featured multi arch/os debugger built on top of PyQt5 and frida

Related tags

Overview

Dwarf

Known Issues

Installation

Usage

Debugging UI (attach wizard)

Debugging UI (straightforward)

Debugging UI (own agent)

Dwarf typings + injector

Dwarf trace

Owner

iGio90

A configurable set of panels that display various debug information about the current request/response.

Hdbg - Historical Debugger

pdb++, a drop-in replacement for pdb (the Python debugger)

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging features for exploit developers & reverse engineers ☢

Middleware that Prints the number of DB queries to the runserver console.

Visual profiler for Python

Cyberbrain: Python debugging, redefined.

Sampling profiler for Python programs

🔥 Pyflame: A Ptracing Profiler For Python. This project is deprecated and not maintained.

pdb++, a drop-in replacement for pdb (the Python debugger)

Full featured multi arch/os debugger built on top of PyQt5 and frida

Visual Interaction with Code - A portable visual debugger for python

Hunter is a flexible code tracing toolkit.

A configurable set of panels that display various debug information about the current request/response.

Integration of IPython pdb

Automated bug/error reporting for napari

EDB 以太坊单合约交易调试工具

VizTracer is a low-overhead logging/debugging/profiling tool that can trace and visualize your python code execution.

Winpdb Reborn - A GPL Python Debugger, reborn from the unmaintained Winpdb

An x86 old-debug-like program.