Lib.rs

Development toolsDebugging
#process-memory #debug-information #dwarf #ptrace #disassembler #disassembly

bin+lib coreminer

A debugger which can be used to debug programs that do not want to be debugged

by PlexSheep

6 releases

new 0.2.3 Mar 10, 2025
0.2.2 Mar 10, 2025
0.1.1 Mar 5, 2025
0.1.0 Feb 26, 2025

#132 in Debugging

Download history 124/week @ 2025-02-23 413/week @ 2025-03-02

537 downloads per month

MIT license

245KB
3K SLoC

icon

🔩 coreminer 👁️

Debug those programs that don't want to be


Release Status Rust CI License Release
Rust Crates.io MSRV Crates.io Total Downloads docs.rs

coreminer

A powerful debugger written in Rust that provides low-level debugging capabilities for programs that may not want to be debugged. Coreminer gives you deep control over program execution with robust DWARF debug information parsing.

Features

  • Execution Control: Set breakpoints, step through code, continue execution
  • Memory & Register Access: Read from and write to process memory and CPU registers
  • Variable Inspection: Read and write application variables using DWARF debug symbols
  • Stack Unwinding: Generate and analyze stack backtraces
  • Disassembly: View disassembled code at specific addresses
  • Process Inspection: View process maps and executable layouts

Installation

Additional system dependencies

Coreminer depends on libunwind-dev. On Debian, it can be installed like this. Other distributions provide similar packages.

apt install libunwind-dev

From crates.io

cargo install coreminer

From source

git clone https://github.com/debugger-bs/coreminer.git
cd coreminer
cargo build --release

The binary will be available at ./target/release/cm.

Quick Start

Launch Coreminer

You can launch Coreminer with an optional executable path as a default target:

# Launch Coreminer without a target
cm

# Launch Coreminer with a default executable
cm ./target/debug/dummy

Command-Line Interface

Coreminer provides a simple CLI that allows you to interact with the debugger. The interface supports command history for ease of use.

Once in the Coreminer CLI, you can use:

# Run a program with arguments
run ./target/debug/dummy arg1 arg2

# If launched with a default executable, you can run it with:
run

# Set a breakpoint at a specific address (hex)
bp 0x0000563087528176

# Continue execution
c

# Step over instructions
s
step

# View disassembly at some address, 20 bytes
d 0x0000563087528176 20

# View disassembly at some address, 20 bytes, showing the code exactly how it is
# in memory - including the int3 instructions set by breakpoints
d 0x0000563087528176 20 --literal

# Read registers
regs get

# View process memory
rmem 0x7fffffffe000

# Backtrace the call stack
bt

# Read a variable by name (requires debug information)
var my_variable_name

# Inspect a debug symbol (requires debug information)
sym main
sym i

Advanced Stepping

# Step into a function call
si

# Step over a function call
su
sov

# Step out of the current function
so

Memory and Register Manipulation

# Write a value to memory
wmem 0x7fffffffe000 0x42

# Set register value
regs set rip 19

Working with Variables

# View a variable by name
var counter

# Write to a variable
vars counter 42

Automatic Stepping

# Set up automatic stepping for N steps
set stepper 10

Help and Exit

# Show available commands
help

# Exit the debugger
q
quit
exit

JSON Interface

From v0.2.0, Coreminer includes a second binary: cmserve. cmserve provides all internal functionalities of the Coreminer debugger, but can be scripted. This enables projects such as hardhat to build a better user interface for Coreminer.

To see some example inputs (statuses) and outputs (feedbacks), you can use cmserve --example-statuses --example-feedbacks .

Use Cases

  • Reverse Engineering: Analyze and understand program behavior
  • Debugging Stripped Binaries: Debug programs with limited debugging information
  • Security Research: Analyze potentially malicious code in a controlled environment
  • Low-level Debugging: Step through compiled code precisely

Architecture

Coreminer is built around several key components:

  • Debuggee Control: Via Linux ptrace API
  • DWARF Debug Info: For symbol resolution and variable information
  • Stack Unwinding: Using libunwind
  • Disassembly: Powered by iced-x86

Examples

The examples directory contains a few small programs that serve as debuggees. You can try coreminer on them and see what happens.

They can be compiled in debug or release mode with build-dummy.sh and build-release.sh.

Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

  1. Fork the repository
  2. Create your feature branch (git checkout -b feature/amazing-feature)
  3. Commit your changes (git commit -m 'feat: Add some amazing feature')
  4. Push to the branch (git push origin feat/amazing-feature)
  5. Open a Pull Request

Note: this project makes use of conventional git commits.

License

Distributed under the MIT License. See LICENSE for more information.

Acknowledgements

Dependencies

~19–29MB
~495K SLoC