Skip to content

Dalvik(Smali) ByteCode info (grammar) fetch tool written in Python.

License

Notifications You must be signed in to change notification settings

RevEngiSquad/smalig

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

24 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

smalig

Dalvik(Smali) ByteCode info (grammar) fetch tool written in Python.

Description

smalig is a tool designed to fetch information about Dalvik(Smali) bytecode instructions. It allows users to specify a target instruction and retrieve detailed information about it, either in plain text or JSON format. This tool is particularly useful for developers and reverse engineers working with Android bytecode. Although there are many tools & resources available which does same job like Dalvik Bytecode Reference, Some chinese applications like MT Manager, NP, etc. but they all are very limited or little complex to understand and some are even outdated with no new instructions added. We created it for our use in RevEngi project and decided to share it in the hope that it will be useful to others.

Features

  • Fetch information for specific Dalvik(Smali) instructions.
  • Output results in plain text or JSON format.
  • Save output to a specified file or print to the console.
  • Interactive mode for prompting user input.

Installation

To install smalig, you can use pip:

pip install smalig

or you can install it from source:

pip install git+https://github.com/RevEngiSquad/smalig.git

Usage/Examples

You can use smalig from the command line. Below are some examples of how to use the tool:

smalig -t "move"  # Fetch information for the 'move' instruction.
smalig -t "invoke-virtual" -j -o output.json # Fetch and save as JSON
smalig -o my_output.txt # Prompts for instruction then saves to my_output.txt
smalig -t "move" -m # Enable fuzzy matching

Output: Normal output:

Opcode: 01
Name: move
Format: B|A|op
Format ID: 12x
Syntax: move vA, vB
Args: A: destination register (4 bits), B: source register (4 bits)
Short Info: Move the contents of one non-object register to another.
Detailed Info: Moves the content of vB into vA. Both registers must be in the first 16 register range (0-15).
Example: 0110 - move v0, v1
  Desc: Moves the content of v1 into v0.

With Fuzzy matching:

Result 1:
Opcode: 01
Name: move
Format: B|A|op
Format ID: 12x
Syntax: move vA, vB
Args: A: destination register (4 bits), B: source register (4 bits)
Short Info: Move the contents of one non-object register to another.
Detailed Info: Moves the content of vB into vA. Both registers must be in the first 16 register range (0-15).
Example: 0110 - move v0, v1
  Desc: Moves the content of v1 into v0.

Result 2:
Opcode: 02
Name: move/from16
Format: AA|op BBBB
Format ID: 22x
Syntax: move/from16 vAA, vBBBB
Args: A: destination register (8 bits), B: source register (16 bits)
Short Info: Move the contents of one non-object register to another.
Detailed Info: Moves the content of vB into vA. vB must be in the 64k register range (0-65535) while vA is one of the first 256 registers (0-255).
Example: 0200 1900 - move/from16 v0, v25
  Desc: Moves the content of v25 into v0.

....(Redacted for brevity)

JSON output:

{
    "opcode": "01",
    "name": "move",
    "format": "B|A|op",
    "format_id": "12x",
    "syntax": "move vA, vB",
    "args_info": "A: destination register (4 bits), B: source register (4 bits)",
    "short_desc": "Move the contents of one non-object register to another.",
    "long_desc": "Moves the content of vB into vA. Both registers must be in the first 16 register range (0-15).",
    "note": "",
    "example": "0110 - move v0, v1",
    "example_desc": "Moves the content of v1 into v0."
}

As shown in the above example output, we've gone ahead and provided more detailed information about the instruction. This includes the opcode, format, syntax, arguments, and examples. This information can be useful for understanding the instruction and how it is used in Dalvik bytecode even for beginners.

Command Line Options

  • -t TARGET: Specify the Smali instruction to fetch. If omitted, prompts the user for input.
  • -j: Output the result as JSON. If -o is also specified and the OUTPUT_FILE ends in .json, this flag is automatically set.
  • -m: Enable fuzzy matching for the target instruction. This allows for partial matches.
  • -o OUTPUT_FILE: Write the output to the specified file. If omitted, prints to console.

Contributing

We welcome contribution(s) to smalig! They are what makes the open-source community such an amazing place to learn, inspire, and create. Any contribution(s) you make is/are greatly appreciated.

If you have a feature request or found a bug, please create an issue on the repo. You can also simply open an issue with the tag "enhancement" or "bug" and we will look into it.

If you would like to contribute, please follow these steps:

  1. Fork the repository: Click the "Fork" button in the top right corner of the repository page to create a copy of the repository in your GitHub account.

  2. Create a new branch: Create a new branch for your feature or bug fix:

    git checkout -b my-feature-branch
  3. Make your changes: Implement your feature or bug fix.

  4. Commit your changes: Commit your changes with a descriptive commit message:

    git commit -m "Description of my changes"
  5. Push to your fork: Push your changes to your forked repository:

    git push origin my-feature-branch
  6. Create a pull request: Go to the original repository and create a pull request from your forked repository. Provide a clear description of your changes and any related issues.

Guidelines

  • Write clear and concise commit messages.
  • Update documentation if necessary.
  • Write tests for new features or bug fixes if applicable.

Thank you for contributing to smalig!

Don't forget to star the repository if you found it useful.

License

This project is licensed under the MIT License. See the LICENSE file for details.