antoniovazquezblanco/setup-ghidra

GitHub: antoniovazquezblanco/setup-ghidra

用于在 GitHub Actions 中快速部署 Ghidra 逆向分析环境的官方 Action 插件。

Stars: 16 | Forks: 1

# 设置 Ghidra Action [![CI](https://static.pigsec.cn/wp-content/uploads/repos/2026/03/50d19e2dbe030833.svg)](https://github.com/antoniovazquezblanco/setup-ghidra/actions/workflows/main.yml) [![CodeQL](https://static.pigsec.cn/wp-content/uploads/repos/2026/03/1007471580030837.svg)](https://github.com/antoniovazquezblanco/setup-ghidra/actions/workflows/codeql.yml) 此 action 用于设置 Ghidra 环境以在 actions 中使用。 可以选择特定的 Ghidra 版本,甚至可以使用来自自定义 fork 的 release。 此 action 将自动在您的环境中设置 `GHIDRA_INSTALL_PATH` 变量。 如果未找到匹配的版本,该 action 将失败。 ## 用法 **基础:** 此示例仅克隆您的代码,设置 java,并从官方仓库将 Ghidra 设置为找到的最新 release 版本。 ``` steps: - uses: actions/checkout@v4 - uses: actions/setup-java@v4 - uses: antoniovazquezblanco/setup-ghidra@v2.0.12 ``` **高级:** 此示例尝试使用不同的 Ghidra 版本构建一个 module 项目。 ``` strategy: matrix: ghidra: - "11.3.2" - "11.2.1" - "11.1.2" steps: - uses: actions/checkout@v4 - uses: actions/setup-java@v4 - uses: gradle/actions/setup-gradle@v3 - uses: antoniovazquezblanco/setup-ghidra@v2.0.12 with: auth_token: ${{ secrets.GITHUB_TOKEN }} version: ${{ matrix.ghidra }} - name: Build something with Ghidra ${{ matrix.ghidra }} run: gradle -PGHIDRA_INSTALL_DIR=${{ env.GHIDRA_INSTALL_DIR }} ``` **参考:** 有关 action 参数的完整参考,请参阅 [action.yml](action.yml) ``` - uses: antoniovazquezblanco/setup-ghidra@v2.0.12 with: # A distribution download URL to directly download and install it. # If this argument is specified, both the repository and version arguments # will be ignored. # Example: # download_url: 'https://github.com/NationalSecurityAgency/ghidra/releases/download/Ghidra_10.4_build/ghidra_10.4_PUBLIC_20230928.zip' download_url: "" # The owner of the repository to look for Ghidra releases. By default, NSA # official user is used. owner: "NationalSecurityAgency" # A repository on which to find releases. By default, NSA official repo # name is used. repository: "ghidra" # Version spec to use. Please use SemVer notation. It also accepts the # 'latest' alias to download the latest version available. version: "latest" # SHA256 sum value to check the downloaded tool against. You may use the # keyworkd 'skip' to not perform this check or the keyworkd 'online' to # check against the release notes in the repository. Otherwise, a valid # hexadecimal string is expected. sha256sum: "online" # Github authentication token to avoid API limiting. # This is optional. auth_token: ${{ secrets.GITHUB_TOKEN }} ```
标签:Ghidra, GitHub Actions, JS文件枚举, NSA, Setup Action, 二进制分析, 云安全监控, 云安全运维, 云资产清单, 后台面板检测, 工作流, 开源, 插件开发, 数据可视化, 环境配置, 网络取, 网络调试, 自动化, 自动化攻击, 自动笔记, 软件供应链, 逆向工程, 静态分析