Crate binsleuth

Expand description

§BinSleuth

Binary inspection and security analysis toolkit for ELF and PE binaries.

BinSleuth detects:

Security hardening flags (NX, PIE, RELRO, Stack Canary, FORTIFY_SOURCE, RPATH/RUNPATH, debug-symbol stripping)
Shannon entropy per section (detects packing/encryption)
Dangerous symbol usage (system(), execve(), mprotect(), …) with category (Exec / Net / Mem)
Per-section virtual address, file offset, and read/write/execute permissions

§Quick start (library)

let data = std::fs::read("path/to/binary").unwrap();

// Single call — returns everything including security score
let report = binsleuth::analyze(&data).unwrap();
println!("Score: {}/100", report.security_score);
println!("{}", report.to_json_pretty());

§Lower-level API

use binsleuth::analyzer::hardening::HardeningInfo;
use binsleuth::analyzer::entropy::SectionEntropy;

let data = std::fs::read("path/to/binary").unwrap();

let hardening = HardeningInfo::analyze(&data).unwrap();
println!("PIE: {:?}", hardening.pie);

let sections = SectionEntropy::analyze(&data).unwrap();
for sec in &sections {
    println!("{}: va={:#x} entropy={:.4} r={} w={} x={}",
        sec.name, sec.virtual_address, sec.entropy,
        sec.permissions.read, sec.permissions.write, sec.permissions.execute);
}

§CLI

cargo install binsleuth
binsleuth ./target/debug/binsleuth
binsleuth --json ./mybinary
binsleuth --strict --verbose ./mybinary

Re-exports§

pub use analyzer::AnalysisReport;

Modules§

analyzer
report

Functions§

analyze: Convenience wrapper: analyze raw binary bytes and return a complete AnalysisReport.

Crate binsleuth

Crate binsleuth Copy item path

§BinSleuth

§Quick start (library)

§Lower-level API

§CLI

Re-exports§

Modules§

Functions§

Crate binsleuth