Radare2
Last updated
Last updated
Shameless plug
This cheatsheet is given to you for free by the Malcore team: https://m4lc.io/cs/r2/register
Consider registering, and using Malcore, so we can continue to provide free content for the entire community. You can also join our Discord server here: https://m4lc.io/cs/r2/discord
We offer free threat intel in our Discord via our custom designed Discord bot. Join the Discord to discuss this course in further detail or to ask questions.
You can also support us by buying us a coffee
Commands | Details |
| List of supported IO plugins |
| Exit after processing commands |
| Write mode enabled |
| Interprets an r2 script |
| Analyze executable at load time |
| Bare load, do not load executable info as the entrypoint |
| Run r2 and execute commands |
| Creates a project for the file being analyzed |
| Opens r2 with the malloc plugin that provides a 512-byte memory area |
Commands | Details |
| Returns configuration properties |
| Check specific property |
| Change property value |
| Help about a configuration property |
Commands | Details |
Command chaining |
|
Pipe with shell commands |
|
Run shell commands |
|
Escape to shell |
|
Commands | Details |
| Move cursor to address or symbol |
| Move 5 bytes backward |
| Undo seek |
| Redo seek |
Commands | Details |
| Change block size |
Commands | Details |
| Most commands accept |
Commands | Details |
| Analyze all functions and basic blocks |
| Analyze functions |
| List all functions |
| Info on current function |
| Rename function |
Commands | Details |
| File info |
| Strings in data section |
| Sections |
| Symbols |
| Linked libraries |
| Imports |
| Entrypoint |
Commands | Details |
| Write hex values at the current offset |
| Write assembly |
| Write cache commit |
| Write value with endian conversion and padding |
Commands | Details |
| List flags |
| Define a flag at an offset |
| Rename flag |
| Return position from nearest flag |
Commands | Details |
| Copy |
| Print yank buffer |
| Paste contents of yank buffer at an offset |
Commands | Details |
| Enter visual mode |
| Exit visual mode |
| Move around while in visual mode |
| Go to offset |
Commands | Details |
| Search for opcodes |
| Search for assembly |
| Returns a library of gadgets |
Commands | Details |
| Search for bytes |
| Search magic number headers |
Commands | Details |
| Define as data |
| Define as code |
| Add a new comment in console mode |
Commands | Details |
| Print Magic files analysis |
| Search magic number headers |
Commands | Details |
| Scan with Yara for detecting signatures |
Commands | Details |
| Generate zignatures |
| Show loaded zignatures |
Commands | Details |
| Open source file |
| Diff by columns between two offsets |
Commands | Details |
| Dump basic block graph to a file named |
| Dump call graph to a file named |
Commands | Details |
| Start r2 in debugger mode (if the comamnd contains spaces use quotes) |
| Show processes and threads |
| Continue execution |
| Set a breakpoint |
Commands | Details |
| Start the server |
| Start server and browser |
Commands | Details |
| Base conversion and endian change |
| Show entropy per block |
| Code diffing |
| Disassemble data |
Commands | Details |
| Generate 32-bit x86 shellcode |
Commands | Details |
| Executable info |
| Symbols |
Commands | Details |
| Launch a program with args inside r2's debugger |
| runs /bin/cat with the output of exploit.py directed to stdin |