This is a collection of commonly-asked "how do I do X?" questions, for those too lazy to read this whole document.
A binary is loaded by doing:
p = angr.Project("/path/to/your/binary")The most simple way to get a debug output is the following:
import logging
logging.basicConfig(level=logging.DEBUG) # ajust to the wanted debug levelYou may want to use logging.INFO or whatever else instead.
Each angr module has its own logger string, usually all the python modules
above it in the hierarchy, plus itself, joined with dots. For example,
angr.analyses.cfg. Because of the way the python logging module works, you
can set the verbosity for all submodules in a module by setting a verbosity
level for the parent module. For example, logging.getLogger('angr.analyses').setLevel(logging.INFO)
will make the CFG, as well as all other analyses, log at the INFO level.
If you're using angr through ipython, you can add a startup script in your ipython profile to set various logging levels.
You want to load the binary without shared libraries loaded. If they are loaded,
like they are by default, the analysis will try to construct a CFG through your
libraries, which is almost always a really bad idea. Add the following option
to your Project constructor call: load_options={'auto_load_libs': False}