codeminute-the-dev/RawView

# RawView AI-assisted reverse engineering for **Ghidra**: a **Qt (PySide6)** desktop app that drives Ghidra headlessly over **Py4J**, with decompiler, disassembly, strings, imports/exports, xrefs, and related tools in one docked window. **Optional:** an **agent** dock uses the **Anthropic** API when you add a key under **File -> Settings**. Ghidra is not bundled; you point RawView at your install (or ZIP URL) in settings.

**Author:** [@codeminute-the-dev](https://github.com/codeminute-the-dev) ## 特性 - Open binaries and run analysis through Ghidra without using the Ghidra Swing UI for day-to-day navigation. - Docked panes, themes, shortcuts, work notes, and optional RE session archives (`.rvre.zip` style workflow). - Windows-focused packaging: **PyInstaller** onedir + **WiX** per-user MSI. Use the repo **Releases** tab for prebuilt installers when the maintainer uploads them. ## 要求 | | | |--|--| | OS | **Windows** (primary; scripts and MSI are Windows-oriented) | | Python | **3.11+** | | Ghidra | Your own install or official ZIP; configured inside the app | | JDK | **21+** for compiling the Java bridge; the app can fetch Temurin into `%LOCALAPPDATA%\RawView\` on first run | ## 从源代码构建 ``` git clone https://github.com/codeminute-the-dev/RawView.git cd RawView python -m venv .venv .\.venv\Scripts\Activate.ps1 pip install -e ".[dev]" python -m rawview.scripts.compile_java python -m rawview ``` Editable install (`-e`) picks up Python changes without reinstalling. ## Windows MSI（来自本仓库） 1. Install [WiX Toolset 3.11+](https://github.com/wixtoolset/wix3/releases) and ensure `bin` is on `PATH`, or set env var `WIX` to the toolkit root. 2. From the repo root: ``` powershell -ExecutionPolicy Bypass -File scripts\build-msi.ps1 ``` Output: - `dist\RawView\`: portable PyInstaller layout (`RawView.exe`). All Python dependencies from `pyproject.toml` are **frozen into** `_internal` at build time (there is no Python or `pip` on the user's PC for the MSI build). - `dist\RawView\BUNDLED_PYTHON_PACKAGES.txt`: `pip freeze` from the build machine after `pip install ".[dev]"`, shipped next to `RawView.exe` for transparency. - `dist_installer\RawView-0.1.0.msi`: per-user installer (Start menu + desktop shortcuts, full GPL license text in the wizard). Rebuild WiX only (reuse `dist\RawView`): `.\scripts\build-msi.ps1 -SkipPyInstaller` (the script still runs `pip install ".[dev]"` and refreshes `BUNDLED_PYTHON_PACKAGES.txt` before harvesting). ## 仓库布局 | Path | Purpose | |------|---------| | `rawview/` | Application code; Java bridge **sources** under `rawview/java/` | | `packaging/` | `rawview.spec`, WiX `Product.wxs`, icons | | `scripts/` | `build-windows.ps1`, `build-msi.ps1`, `export-source-zip.ps1` | | `installer/` | Optional Inno Setup script (separate from the MSI pipeline) | | `pip/` | Helper scripts for editable installs in a dedicated folder | | `LICENSE` | GPLv3 full text | This repo is the **project root** (the folder with `pyproject.toml`). The inner `rawview/` directory is only the Python package name, not a separate publishable tree. ## 仅源代码归档 To zip exactly what Git tracks (no `dist/`, `build/`, etc.): ``` powershell -ExecutionPolicy Bypass -File scripts\export-source-zip.ps1 ``` Writes `RawView-source-.zip` on the parent of this repo folder. ## 安全 Do **not** commit API keys, tokens, or `rawview.env` from your machine. Settings normally live under `%LOCALAPPDATA%\RawView\`. `.gitignore` excludes common secret filenames and large local Ghidra/JDK trees if they are ever copied next to the clone. ## 许可证 [GNU General Public License v3.0](LICENSE).

标签：AI RE tool, AI辅助, Amass, Docked UI, Findomain, Ghidra, GPLv3, JS文件枚举, MSI, Py4J, PyInstaller, PySide6, Python, Python 3.9+, RawView, URL提取, Wayback Machine, WiX, Xref, 云安全监控, 云资产清单, 交叉引用, 代码导航, 会话存档, 反汇编, 反编译, 威胁情报, 字符串分析, 导入导出, 开发者工具, 无后门, 桌面应用, 漏洞挖掘, 逆向工具, 逆向工程, 逆向辅助, 静态分析