It is strongly recommended that students who want to apply to the radare2 GSoC/RSoC projects will perform a small tasks, to get the idea of students’ capabilities and make them familiar with radare2 codebase, structure and development process. Here is the list of such “qualification” tasks:
The current code analysis have many little caveats and issues which may be good to be addressed, fixing them and writing more tests is very important to stabilize and enhance it.
See these issues^
Avoid overlapping edges, currently the ascii art graphs does not overlap nodes, but some edge lines are passing thru. #6011
Being able to select multiple nodes in the graph and group them to colorize them and specify a name for them. #2952
This task is necessary when node grouping or layout have changed, this information can be stored in projects by just reusing the
age commands to recreate a graph and feeding the body of the nodes in base64.
Add disassembler, assembler and analyzer for the latest LUA vm. See Issue #3836
See universal python disassembler for example and Issue #4228 for current state of it.
Ragg2 - simplistic compiler for C-like syntax into tiny binaries for x86-32/64 and arm. Programs generated by ragg2 are relocatable and can be injected in a running process or on-disk binary file. Fixing ragg2 issues will help a lot for creating small payloads for exploiting tasks.^
Radare2 is being slowly refactored to store all the information about session, user metadata and state of debugger in the SDB - simple key-value database. This work still ungoing. So helping us with a few sdbtization bugs will introduce you into the radare2 codebase structure. See issues
Radare2 has its own intermediate language - ESIL, but not yet support it for all architectures. So the task is to add ESIL support to any architecture, which doesn't has it yet. See issues for the related bugs.^
This task requires implementing proper support for multibyte characters in RConsCanvas in order to render UTF-8 characters in the graphs for having better ascii-art boxes and lines.
There are lot of missing features in the current PE file parser as you can see in this META Issue.
There is basic MDMP file format support in radare2-extras. It should be properly parsed, added ability to automatically load PDB symbols, improved autoanalysis and entry-point searching. Also there should be a support for kernel minidumps as well.
Add pcap support. That will allow radare2 to replay debug sessions without actual calling of the debugger. See issue for more details.
Current version of r2 is able to load ART and AOT binaries, but we are not yet able to extract all the information that lives in there
Dyldcache for user libraries and kernel modules is already supported, but it is not working because of the api changes in RBin. This task implies writing tests for dyldcache (we need to cook a dyldcache that can be distributable, not the ones from Apple). And fix the rbin api to get this working.^
Support gdb:// against apple’s debugserver. This feature already works for i386 simulator, but fails when using arm/arm64 backend on real hardware).
Take ideas from Androguard, and be able to follow execution flow paths to understand which permissions are used in a specific region of code, how to reach a specific activity, etc.
debugserver -x springboard and such to spawn apps from the backboard otherwise they get killed.