zynamics BinNavi is the primary binary code reverse engineering tool
based on graph visualization
Description
BinNavi is a binary code reverse engineering tool that was built to assist vulnerability researchers who look for vulnerabilities in disassembled code.
With BinNavi you can analyze disassembled x86, ARM, PowerPC, and MIPS code using the powerful built-in static code analysis techniques. In cases where static code analysis is not enough, you can use the built-in debuggers to get a live view on the program you are analyzing.
BinNavi is a binary code reverse engineering tool that was built to assist vulnerability researchers who look for vulnerabilities in disassembled code.
With BinNavi you can analyze disassembled x86, ARM, PowerPC, and MIPS code using the powerful built-in static code analysis techniques. In cases where static code analysis is not enough, you can use the built-in debuggers to get a live view on the program you are analyzing.
Use Cases
- Do control flow based code analysis of disassembled x86, ARM, MIPS, and PowerPC code
- Cut down on complexity by removing unimportant code from functions
- Use powerful remote debuggers to debug programs on different operating systems
- Use Differential Debugging to quickly locate relevant code
- Create and assign user-defined tags to mark important functions and basic blocks
- Use advanced code analysis algorithms to keep track of data and code
- Manage all your reverse engineering projects in one central database
- Write scripts and plugins to extend BinNavi to meet your specific goals
- Rename and annotate variables and functions to make them self-explanatory
- Use the REIL meta-language to write platform-independent program analysis code
Screenshots
Screenshot 1: BinNavi 3.0 main window
Screenshot 2: BinNavi graph window
Screenshot 3: Highlighting call instructions in disassembled code
Screenshot 4: Debug trace that logs registers and memory values
Screenshot 5: Debugging a Cisco 2600 router (Using GDB Agent, see below)
Screenshot 6: Using scripts to access disassembly data
Screenshot 7: Using the platform-independent intermediate language REIL
Videos
Two videos are available that demonstrate the workflow with BinNavi.
The first video shows how BinNavi is used to isolate potentially interesting code in the Pidgin instant messenger client. In less than four minutes, the functions responsible for sending and receiving messages are isolated.
Video: Isolating interesting code in Pidgin (5 MB Flash Video)
The second video shows how BinNavi is used to resolve the target addresses of dynamic function calls. This is useful to get a better idea of the control flow in programs with many dynamic function calls, for example C++ programs which make use of class inheritance.
Video: Automatically resolving dynamic function calls (13 MB Flash Video)
Two videos are available that demonstrate the workflow with BinNavi.
The first video shows how BinNavi is used to isolate potentially interesting code in the Pidgin instant messenger client. In less than four minutes, the functions responsible for sending and receiving messages are isolated.
Video: Isolating interesting code in Pidgin (5 MB Flash Video)
The second video shows how BinNavi is used to resolve the target addresses of dynamic function calls. This is useful to get a better idea of the control flow in programs with many dynamic function calls, for example C++ programs which make use of class inheritance.
Video: Automatically resolving dynamic function calls (13 MB Flash Video)
GDB Agent
Out of the box BinNavi can debug applications on 32-bit Windows, 32-bit Linux, and Windows Mobile. If you want to debug devices that run a GDB server with BinNavi you can additionally purchase the BinNavi debugger GDB Agent.
The GDB Agent can be used to debug a wide variety of devices like Cisco routers or Netscreen firewalls. If you want to learn more about the supported devices and whether the GDB Agent is useful for you, please contact the zynamics customer support.
Out of the box BinNavi can debug applications on 32-bit Windows, 32-bit Linux, and Windows Mobile. If you want to debug devices that run a GDB server with BinNavi you can additionally purchase the BinNavi debugger GDB Agent.
The GDB Agent can be used to debug a wide variety of devices like Cisco routers or Netscreen firewalls. If you want to learn more about the supported devices and whether the GDB Agent is useful for you, please contact the zynamics customer support.
Pricing
zynamics BinNavi is an extension to the commercial disassembler IDA Pro. You need a recent version (5.5, 5.6. or 5.7) of IDA Pro to use zynamics BinNavi.
Every license includes free updates and email support for 12 months after the date of purchase. Additional 12 months of free updates can be purchased at 80% of the original license cost:
In addition to the above options, zynamics also offers an attractive subscription plan for large customers: our Enterprise Subscription Plan offers all the benefits of a regular Enterprise License, but is based on a monthly fee.
The minimum duration of the subscription is 24 months. If not terminated 8 weeks in advance of expiration, the subscription will be automatically renewed for 3 months at a time.
For placing an order or any further questions, please contact info@zynamics.com or download our order form (*.pdf).
zynamics BinNavi is an extension to the commercial disassembler IDA Pro. You need a recent version (5.5, 5.6. or 5.7) of IDA Pro to use zynamics BinNavi.
| Per-Engagement License (4 weeks single user) | 800 € | (1170 US$) |
| Single User License | 3200 € | (4680 US$) |
| 5 User License | 14400 € | (21070 US$) |
| 10 User License | 25600 € | (37460 US$) |
| Enterprise License | 38400 € | (56195 US$) |
| GDB Agent Single User License | 1500 € | (2190 US$) |
Every license includes free updates and email support for 12 months after the date of purchase. Additional 12 months of free updates can be purchased at 80% of the original license cost:
| 12 Month Single User Updates | 2560 € | (3745 US$) |
| 12 Month 5 User Updates | 11520 € | (16860 US$) |
| 12 Month 10 User Updates | 20480 € | (29970 US$) |
| 12 Month Enterprise Updates | 30720 € | (44955 US$) |
In addition to the above options, zynamics also offers an attractive subscription plan for large customers: our Enterprise Subscription Plan offers all the benefits of a regular Enterprise License, but is based on a monthly fee.
The minimum duration of the subscription is 24 months. If not terminated 8 weeks in advance of expiration, the subscription will be automatically renewed for 3 months at a time.
| 12 Month Single User Updates | 3000 €/month | (4380 US$/month) |
| For customers within Germany the German VAT (19%) applies. | ||
For placing an order or any further questions, please contact info@zynamics.com or download our order form (*.pdf).