"Loading..."
Archived

  • Project archived and

    No longer supported

About Us

The Function Identification and Recover Signature Tool (FIRST) was developed by Talos as an IDA Pro plugin that allows reverse engineers to more quickly complete static analysis. It makes finding similar functions faster and easier by removing the need to synchronize function metadata. 

FIRST’s extensible framework allows users to submit function metadata to a repository and search the repository for function metadata similar to the function

Goals

Users can contribute function metadata and search for function metadata similar to the function(s) being analyzed in IDA. FIRST’s framework allows developers to create new ways to derive similarities between functions.

  • Save function metadata (name, prototype, and comment)
  • Provide way to find similar functions
  • Allow users to apply function metadata in IDA Pro
  • Reduce reverse engineering time

Requirements & Installation

Requirements

  • IDA Pro 6.9 SP1
  • Python Requests (https://pypi.python.org/pypi/requests/)

Download

The IDA Pro plug-in can be downloaded from GitHub

Install

For the most stable version of FIRST, get the plug-in from the master branch. For the latest (more)

Documentation

Check out our Docs (Server - IDA Plugin).

© 2016 Cisco Systems, Inc. and/or its affiliates. All rights reserved. View our Privacy Policyhere.