Question 1

How to install Radare2 on Windows?

Accepted Answer

Use the provided .bat scripts: run preconfigure.bat to set up dependencies like meson and ninja, then configure.bat and make.bat to compile. Pre-built binaries are also available from GitHub releases for quicker setup.

Question 2

Radare2 vs Ghidra: which is better for reverse engineering?

Accepted Answer

Radare2 excels in CLI flexibility, scriptability, and support for esoteric architectures, while Ghidra offers a more polished GUI and integrated decompiler out-of-the-box. Choose Radare2 for deep customization and Ghidra for collaborative workflows with less initial hassle.

Question 3

How do I use a decompiler in Radare2?

Accepted Answer

Install plugins like r2ghidra via 'r2pm -i r2ghidra', then use commands like 'pdg' for decompilation. Note that decompilers are separate additions and may require configuration or have limitations compared to standalone tools.

Question 4

What are the basic Radare2 commands for analyzing a binary?

Accepted Answer

Open a file with 'r2 /bin/ls', run 'aaa' for auto-analysis, 'afl' to list functions, 'pdf' to disassemble, and 'agf' for graph views. The README provides a quickstart example, but mastery requires practice and reference materials.

Question 5

Can Radare2 debug Android apps remotely?

Accepted Answer

Yes, via the r2frida plugin for dynamic analysis or built-in GDB support. Use 'r2 frida://0' to attach, but setup may involve additional steps like configuring Frida on the target device.

Question 6

Is there a GUI for Radare2, and how good is it?

Accepted Answer

The official GUI is Iaito, a Qt-based interface installable via r2pm. While functional, it lags behind the CLI in features and updates, so power users often prefer the command-line for complex tasks.

Radare2

What is Radare2?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions