How to Get the Most Out of the Python Decompilers Uncompyle6 and Decompyle3 - How to Write and Read

Опубликовано: 15 Сентябрь 2024
на канале: Black Hat
624
25

How to Get the Most Out of the Python Decompilers Uncompyle6 and Decompyle3 - How to Write and Read a Bytecode Decompiler

Uncompyle6, and decompyle3 are the most complete, popular, and accurate open-source Python bytecode decompilers available for the Python versions they support. The underlying cross-platform disassembler they use, xdis, is also unique.

The decompilers produce runnable Python source code for the Python version dialect that the code was written in. Furthermore, they produce the thought process used to recreate the source code. An abstract parse of the bytecode instructions can be used to understand how sequences of bytecode correspond to sequences of source code.

The disassembler they use is also unique in in a number of ways that I will describe.

I will show tips and tricks for using these decompilers and what makes these so special and successful.

Then I'll follow with how the novel technique used here can be used for other programming languages that work off of bytecode.

Finally, I will mention how some of these ideas might be useful in developing a machine-learning bytecode decompiler.

By:
Rocky Bernstein | Chief Mad Scientist Emeritus

Full Abstract & Presentation Materials: