Skip to content

firmware-crunch/fiit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

60 Commits
.github/workflows
.github/workflows
 
 
src/fiit
src/fiit
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
COPYING
COPYING
 
 
NOTICE
NOTICE
 
 
README.md
README.md
 
 
changelog.md
changelog.md
 
 
pyproject.toml
pyproject.toml
 
 
setup.py
setup.py
 
 

Repository files navigation

Fiit - Firmware Instrumentation and Introspection Tools

Coverage badge Tests badge Build badge PyPI version

Fiit aims to provide a toolbox for firmware instrumentation and in-depth dynamic analysis, in emulated or physical environment. This project targets exotic CPU architectures and bare-metal or real-time operating system that requires minimally intrusive instrumentation. The library provides a set of python interfaces and a high-level framework interface, which enable the creation of custom runtime environments with advanced firmware introspection capabilities at the processor, peripheral and software levels.

Installation

Fiit is available on PyPI:

$ pip install fiit-py

Framework Features

The following plugins are available via YAML file configuration:

  • Machine and devices interface:

    • Designed for multiple ISA emulation backend (Unicorn, ...).
    • Designed for complex hardware scenario with multiples processors.
    • Devices available: PL190.

  • MMIO Trace:

    • Log mmio access.
    • Specify CMSIS-SVD specification for detailed annotation.
    • Statistical analysis with graphical representations.

  • MMIO Debugger:

    • Debug mmio access step by step, a king of data breakpoint but customised for mmio.
    • Specify CMSIS-SVD specification for detailed annotation.
    • Useful for firmware rehosting.

  • Hooking Engine:

    • Define function location via config file.
    • Handle C data type and function definition via regular C header.
    • Define various hooking strategies: pre hook, post hook, replace hook.
    • Access C function arguments from hook via a custom ctypes Python interface.
    • Modify C function arguments and return value from hook.
    • Call C function from hook.
    • Calling convention available: AAPCS32.

  • Function Trace:

    • Log function.
    • Specify C header for C function definition and C data type handling.
    • FreeRTOS task filter extension via pxCurrentTCB location definition.

  • C Data Type Mapping:

    • Define C data types definition via config file or at runtime.
    • Access C Data types from everywhere in the Fiit runtime.

  • Debugger:

    • Debugger API inspired from GDB.
    • Out-of-band debugging, zero trace in memory.

  • Shell:

    • Full access to plugins and Fiit runtime.
    • Local IPython shell.
    • Remote Jupyter Terminal with multiuser support.
    • Access to a command line interface for: Machine, MMIO Trace, MMIO Debugger, C Data Type Mapping and Debugger.

Many other plugins are not yet released.

About

Firmware Instrumentation and Introspection Tools

Topics

emulator debugger embedded analysis instrumentation hooking debug-probe

Resources

Readme

License

AGPL-3.0 license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 3

Fiit v0.3.0 Latest
Mar 25, 2026
+ 2 releases

Contributors

Languages