deREferencing: IDA Pro plugin that implements more user-friendly register and stack views
deREferencing
deReferencing is an IDA Pro plugin that implements new registers and stack views. Adds dereferenced pointers, colors and other useful information, similar to some GDB plugins (e.g: PEDA, GEF, pwndbg, etc).
Supports following architectures: x86, x86-64, ARM, ARM64, MIPS32 and MIPS64
Requirements
- IDA-Pro >= 7.2
Install
git clone https://github.com/danigargu/deREferencing.git
Just drop the dereferencing.py file and the dereferencing folder into IDA’s plugin directory.
To install just for the current user, copy the files into one of these directories:
| OS | Plugin path |
|---|---|
| Linux/macOS | ~/.idapro/plugins |
| Windows | %AppData%\Hex-Rays\IDA Pro\plugins |
Usage
Both views can be opened from the menu Debugger -> Debugger Windows or by shortcuts:
- deREferencing – Registers (Alt-Shift-D)
- deREferencing – Stack (Alt-Shift-E)
You also can save the desktop layout using the Windows -> Save desktop option, so that the plugin starts automatically in other debugging sessions.
Configuration
Config options can be modified vía deferencing/config.py file.
Snapshots
Registers view
Stack view
Copyright (C) 2019 Daniel García Gutiérrez – @danigargu
Source: https://github.com/danigargu/
