Product Introduction
Shambles is a complete reverse engineering platform for embedded system and Internet of Things (IoT). With Shambles, the standard approach of hardware hacking is evolved from binwalk-reliant and IDA-oriented processes into a new dimension, which is not only precisely targeted to the multitude of embedded architecture, but also automate the reverse engineering process in enabling a mass quantity of firmware to be thoroughly analyzed on time. As a precisely embedded targeted reverse engineering toolset, with revolutionary core technology in static and dynamic analysis, intermediate representation, symbolic execution, emulation, and fuzzing, Shambles offer various of unique features for embedded system and IoT security evaluation. On the other hand, by harnessing the automated feature of Shambles, the entire security evaluation process is not only can be completed by using default template of patterns, but also possible to compile a new customized pattern in establishing more targeted evaluation for advanced user.
Optimized Disassemble and Decompiler for Embedded / IoT Reverse Engineering
- Support ARM, MIPS, PPC Instruction Set - Pseudo-code in more intuitive and user-friendly way- Built-in optimization of pseudo-code regeneration for embedded / IoT firmware
Pattern Specific Bug Finding Approach
- Pattern is organized in CWE form - Bug finding process happen in embedded customized Intermediate Representation (IR)- BinQL – Our proprietary bug query language in specifying pattern to accomplish targeted IR analysis
Supply Chain Analysis
- Output firmware supply chain information- Multiple firmware supply chain cross validation
Integrated Symbolic Execution
- Create appropriate test case to reach into the code block with respective CWE- Selective approach to focus on the targeted code- Performance optimized for embedded firmware architecture
Pattern Specific Fuzzing Approach
- System emulated fuzzing- Partial emulated fuzzing- CWE Specific
Headless Automation
- Customized and concatenated pattern- Analyze a mass quantity of firmware without human intervention - Generate professional report
FAQ and Help
Email
Wechat
News