#memory #pattern #scan #aob #signature #command-line-tool #object-file

app aobscan-cli

AOBscan CLI is a command-line utility for multi-threaded AOB memory scanning

1 stable release

1.0.1 Mar 30, 2023

#34 in #object-file

MIT license

1MB
151 lines

AOBscan CLI 🔩


AOBscan CLI is a command-line utility for multi-threaded AOB memory scanning based on the AOBscan library.

Features

  • User-friendly CLI interface
  • Single-threaded and multi-threaded file scanning
  • IDA-style patterns: 48 8b ? ? ? 48 8c ?? ?? ?? ??
  • Raw hexadecimal strings: 488b??????00
  • Scan for pattern in an object file section (by name)
  • FAT Mach-O binaries support

Usage

Sample GIF

  • Scan for an IDA-style pattern in a file
aobscan -f "file" -- "48 8b ? ? ? ? ? 48 8c"
  • Scan for the first match of a raw hexadecimal string in the __text section of a file
aobscan -f "file" -s "__text" -i -- "488b??????00"

See aobscan --help for all the available arguments and their descriptions.

Installation

🍺 Homebrew (macOS/Linux)

The easiest way to install AOBscan CLI is via Homebrew, using my TAP:

brew tap sonodima/sonodima
brew install aobscan

You can now launch the program with the aobscan command.

📦 Pre-built Binaries

Binaries for Windows, Linux and macOS are available on the releases page.

🔩 From Source

Rust is required to build from source. If you don't have it installed, you can install it using rustup.

git clone https://github.com/sonodima/aobscan-cli
cd aobscan-cli
cargo build --release

The compiled binary will be located at target/release/aobscan-cli

Read More

If you are interested in benchmarks or learning more about AOB scanning, check out the AOBscan library, which is the core of this project.

Dependencies

~1–11MB
~77K SLoC