macOS ◆ xterm-256color ◆ fish 826 views

The tracing in Pyromaniac uses Capstone for its disassembly. This saved me a huge amount of time which I might waste on implementing the disassembly myself. That isn’t to say it is perfect. It likes using SVC for SWI (which is the name given by ARM now), and expresses LDMFD and STMFD as POP and PUSH. It also likes to present branches with a # prefix before the address (and obviously all the addresses are expressed as 0x<number>, rather than &<number>). Some of these things I fix up in post-processing.