 |
[download] PeSpin 1.33 JavaScript Unpacker v0.1 Posted by mr.exodia on 02 February 2012 - 14:12 WOW! This is a great plugin language... I recommend Code::Blocks to do auto-formatting so scripts are kept readable in the future.Thanks a lot for this powerful example!Mr. eXoDia
[download] DYAMAR 1.3.6 (Unpacking) Posted by kyREcon on 30 January 2012 - 17:57 Cool, I had already unpacked this one few months ago. Written also some interesting scripts to fix import-redirections, find oep and also fix randomly injected anti-debugging code.I had started writin [ more ... ]
[download] OllyDbg2 Lena151 Highlighting Posted by Dirty_Harry on 22 January 2012 - 05:01 Great... much better like the default one :)
[download] Reversing for Newbies - Complete Posted by Novice007 on 21 January 2012 - 15:34 Thanks to all who make this site so helpful. Special thanks to Teddy and to Lena151.
[download] Reversing for Newbies 13 Posted by Brave on 16 January 2012 - 12:42 Thank you to Lena for your great tutorial. I would like to ask about one strange step, after you set up the 3 BP's for the "GetWindowtextA", the program status was "Running" so you mention "lets conti [ more ... ]
[download] Reversing for Newbies - Complete Posted by escher7 on 15 January 2012 - 06:31 Just passing by. Downloaded the tutorial set which looks like it's what I have searched for.Disappointed in the ripping of newbies. Navy Seals pummel the new guys black and blue, but you are not Seals [ more ... ]
[download] Reversing for Newbies 06 Posted by lena151_as_guest on 13 January 2012 - 15:26 Anybody having problems working in olly on a x64bit system can also install a VM like VMware to solve this problem (and install ie. Win XP 32bit inside it.)Using the stealth64-plugin with olly1.1 can [ more ... ]
[download] Crypto Scanner 0.5b Posted by happycat on 11 January 2012 - 20:49 Hi Loki,would it be possible to get a hold of crypto scanner 0.4b? I can't seem to find it anywhere.Thanks,happycat
[download] API Logger 1.8 Posted by black_ninja on 07 January 2012 - 03:07 API Logger v1.8 at author web site
[download] Reversing for Newbies - Complete Posted by Anonymous on 06 January 2012 - 17:11 I 100% agree with SoupDragon. If you're really going to trip on some hacktools coming up as a virus, you really are an idiot and need to study computers more.
|
 |
|
 |
| |
Category |
Files |
Size |
Downloads |
|
 |
|
 |
(OllyScript - Scripts:)
Armadillo 3.7x - 8.xx Unpacker (Standard + Debug-Blocker) v0.1
Author: Mr. eXoDia Armadillo v3.7x - v8.xx Debug Blocker / Standard / Minimum unpacking script. This script unpacks almost every version of Armadillo, it also unpacks UPX if it's detected. Date: 27 January 2012 - 22:03
Filesize: 12.84 kb
Total Downloads: 183
(Unpacking Tutorials:)
DYAMAR 1.3.6 (Unpacking)
Author: Mr. eXoDia Dear tuts4you, I had some time and here is my new tutorial about unpacking DYAMAR Protector. Date: 27 January 2012 - 22:01
Filesize: 16.77 mb
Total Downloads: 142
(OllyDbg Plugins:)
ODBJScript 1.1.956
Author: Zool@nder Overview:
1) ODBJScript is a 'yet another scripting language' plugin for OllyDbg 1.10 that lets you script OllyDbg. It brings to the reverse engineering world another hopefully useful, more common and widely spread language: jacascript! [more...] Date: 27 January 2012 - 21:57
Filesize: 989.55 kb
Total Downloads: 108
(OllyDbg JavaScripts:)
PeSpin 1.33 JavaScript Unpacker v0.1
Author: Zool@nder This Script fix all but:
- nanomites (use spinano to fix them)
- iat alignement (use PESpin 1.33c version or UIF to fix it). Date: 27 January 2012 - 21:55
Filesize: 6.35 kb
Total Downloads: 55
(Software Testing and Binary Static Analysis:)
Practical Low-effort Equivalence Verification of Real Code
Author: David A. Ramos, Dawson R. Engler Verifying code equivalence is useful in many situations, such as checking: yesterdays code against today's, different implementations of the same (standardized) interface, or an optimized routine against a reference implementation. We present a [more...] Date: 27 January 2012 - 21:54
Filesize: 187.08 kb
Total Downloads: 24
(Immunity Extra Tools & Utilities:)
PluginFix 1.01
Author: BoB This simple tool will fix OllyDbg or old Immunity Debugger plugins to work with the new ImmDbg v1.80, where many things have changed since previous versions making plugins incompatible.
To use, simply drop one or more plugins onto the FixPlugin.EX [more...] Date: 22 January 2012 - 06:16
Filesize: 16.01 kb
Total Downloads: 125
(OllyScript - Scripts:)
Inline Patcher & API Hooker v1.0
Author: PerTic@n A script to assist in hooking API's and creating inline patches. Date: 22 January 2012 - 05:06
Filesize: 24.21 kb
Total Downloads: 79
(Software Testing and Binary Static Analysis:)
A Smart Fuzzer for x86 Executables
Author: Andrea Lanzi, Lorenzo Martignoni, Mattia Monga, Roberto Paleari The automatic identification of security-relevant flaws in binary executables is still a young but promising research area. In this paper, we describe a new approach for the identification of vulnerabilities in object code we called smart fuzzing. Wh [more...] Date: 22 January 2012 - 05:00
Filesize: 211.64 kb
Total Downloads: 59
(Software Testing and Binary Static Analysis:)
Assembly Visualization and Analysis
Author: Jennifer Baldwin Software engineering and programming language advances and developments have brought us further away from low-level languages like assembly and have had an impact on productivity, time to market, comprehension, maintenance and evolution of software i [more...] Date: 22 January 2012 - 04:59
Filesize: 303.17 kb
Total Downloads: 47
(Malware / Security Analysis:)
Detection of Metamorphic and Virtualization-based Malware
Author: Matt Webster, Grant Malcolm We present an overview of the latest developments in the detection of metamorphic and virtualization based malware using an algebraic specification of the Intel64 assembly programming language. After giving an overview of related work, we describe [more...] Date: 22 January 2012 - 04:58
Filesize: 184.26 kb
Total Downloads: 54
(Cryptography / Algorithms:)
Lightweight Cryptographic Algorithms
Author: Jorge Nakahara Jr In this report, we survey the latest developments, including work-in-progress, on lightweight cryptographic algorithms, such as block ciphers and cryptographic protocols aimed at resource-constrained devices such as RFID tags and sensor networks. Thi [more...] Date: 22 January 2012 - 04:56
Filesize: 474.04 kb
Total Downloads: 34
(IDA Plugins:)
Optimice 0.14
Author: Branko Spasojevic This plugin enables you to remove some common obfuscations and rewrite code to a new segment. Currently supported optimizations are:
Dead code removal
JMP merging
JCC opaque predicate removal
Pattern based deobfuscations
Plugin was test [more...] Date: 22 January 2012 - 04:56
Filesize: 563.47 kb
Total Downloads: 260
(IDA Plugins:)
PBStrings 0.1
Author: P47R!CK Meant for decoding pb's encrypted strings. Date: 22 January 2012 - 04:54
Filesize: 3.35 kb
Total Downloads: 25
(IDA Plugins:)
SigMaker 0.1
Author: P47R!CK Can create sigs automatically and has a wide variety of functions (might be unstable on IDA 6.2). Date: 22 January 2012 - 04:53
Filesize: 36.77 kb
Total Downloads: 35
(C.O.R.E. Solutions:)
Solution to Mr. eXoDia KeygenMe #2
Author: TCrazyC KeygenMe solution Mr. eXoDia's KeygenMe #2 Date: 22 January 2012 - 04:51
Filesize: 580.83 kb
Total Downloads: 34
(IDA Plugins:)
Wrapgen 0.1
Author: P47R!CK Creates wrappers for DLL's from IDBS. Date: 22 January 2012 - 04:49
Filesize: 66.2 kb
Total Downloads: 35
(Process Explorers / Monitors:)
API Logger 1.8
Author: Black Ninja The program is intended for monitoring API-functions that are called by other programs and function may not be API, in other words it may lie inside exe or dll and not export at all.
Features:
* Compatible with 32bit Win2k, XP, Vista, Win7
* [more...] Date: 08 January 2012 - 08:00
Filesize: 205.48 kb
Total Downloads: 908
(Anti-Debugging:)
The Ultimate Anti-Debugging Reference
Author: Peter Ferrie A debugger is probably the most commonly-used tool when reverse-engineering (a disassembler tool such as the Interactive DisAssembler (IDA) being the next most common). As a result, anti-debugging tricks are probably the most common feature of code i [more...] Date: 26 December 2011 - 12:47
Filesize: 661.79 kb
Total Downloads: 951
(KeygenMe:)
Mr. eXoDia KeygenMe #2
Author: Mr. eXoDia I've created a quite easy KeygenMe from which I would like you solve it :)
No packer/protector, just plain C with a not-so-fancy looking GUI..
Please send solutions to: mr.exodia.tpodt@gmail.com Date: 26 December 2011 - 12:44
Filesize: 41.49 kb
Total Downloads: 151
(OllyDbg Plugins:)
AttachHelper 0.1
Author: Hyunseung If the target process is packed with Themida an OllyDbg crash could occur because "DbgBreakPoint", "DbgUiRemoteBreakin" is modified. This plugin automatically restores "DbgBreakPoint", "DbgUiRemoteBreakin". Date: 22 December 2011 - 07:39
Filesize: 47.64 kb
Total Downloads: 218
(Software Testing and Binary Static Analysis:)
Automatic Reverse Engineering of Data Structures from Binary Execution
Author: Zhiqiang Lin, Xiangyu Zhang, Dongyan Xu With only the binary executable of a program, it is useful to discover the programs data structures and infer their syntactic and semantic definitions. Such knowledge is highly valuable in a variety of security and forensic applications. Although the [more...] Date: 22 December 2011 - 07:38
Filesize: 333.44 kb
Total Downloads: 193
(Malware / Security Analysis:)
Hardware Involved Software Attacks
Author: Jeff Forristal Computer security vulnerabilities involving hardware are under-represented within the security industry. With a growing number of attackers, malware, and researchers moving beyond pure software attack scenarios and into scenarios incorporating a hard [more...] Date: 22 December 2011 - 07:36
Filesize: 1.26 mb
Total Downloads: 84
(Software Testing and Binary Static Analysis:)
Improved Memory-Access Analysis for x86 Executables
Author: Thomas Reps, Gogul Balakrishnan Over the last seven years, we have developed static-analysis methods to recover a good approximation to the variables and dynamically allocated memory objects of a stripped executable, and to track the flow of values through them. It is relatively ea [more...] Date: 22 December 2011 - 07:34
Filesize: 326.53 kb
Total Downloads: 117
(Unpacking Tutorials:)
RLPack 1.21 + WinLicense 2.0x (Unpacking)
Author: LCF-AT Today I release a new manually unpack tutorial about a double protection UnpackMe. So I thought it is a good idea to create a new one and this also without to use a script. This tutorial I made is created in "Newbie Stlye" so that means tha [more...] Date: 22 December 2011 - 07:32
Filesize: 15.32 mb
Total Downloads: 331
(OllyDbg2 Plugins:)
Hyde 1.01
Author: BoB Hyde is a plugin for OllyDbg v2.xx, it's purpose is to hide OllyDbg from detection by the debugee. This is done by patching memory and API's, and the options (or patch sets) can be saved to file, for easy reloading.
For example, with an [more...] Date: 17 December 2011 - 08:44
Filesize: 24.1 kb
Total Downloads: 689
(OllyDbg Plugins:)
ICanAttach 0.1
Author: Waliedassar This plugin enables you to bypass anti-attach techniques e.g. Hooked DbgUiRemoteBreakin, DbgBreakPoint, and NtContinue functions. Date: 17 December 2011 - 08:43
Filesize: 153.28 kb
Total Downloads: 178
(API Hooking / Rootkits:)
Import Address Table Hooking
Author: Nick Cano Hooking is the practice of re-directing the flow of a program causing it to execute a code-cave or function in an injected module in place of another piece of code. In this tutorial, I will cover a method of hooking known as IAT (Import Address Table [more...] Date: 17 December 2011 - 08:42
Filesize: 93.02 kb
Total Downloads: 179
(Miscellaneous Papers:)
A Survey of Steganographic and Steganalytic Tools for the Digital Forensic Investigator
Author: Pedram Hayati, Vidyasagar Potdar, Elizabeth Chang In this paper we survey 111 different steganographic and steganalytic tools available in the market as freeware or shareware or for commercial sale. The main motivation for conducting this survey was to identify what steganographic tools are availabl [more...] Date: 17 December 2011 - 08:40
Filesize: 112.79 kb
Total Downloads: 68
(Programming / Coding:)
Play XM Chips Without Additional DLL From C#
Author: Kurapica I will show you how to build a standalone executable in C# that can play an XM chip from resources without additional external libraries. Date: 11 December 2011 - 06:16
Filesize: 412.43 kb
Total Downloads: 84
(API Hooking / Rootkits:)
Thread Injection
Author: Nick Cano Code-caving is the practice of injecting machine code into a remote process and making it execute. In this tutorial, I will cover a method of code-caving which I like to call thread injection. Thread injection is a seven step process. Date: 11 December 2011 - 05:43
Filesize: 92.87 kb
Total Downloads: 268
(Software Testing and Binary Static Analysis:)
A General Model for Hiding Control Flow
Author: Jan Cappaert, Bart Preneel This paper proposes a general model for hiding control flow graph flattening in C programs. We explain what control flow graph flattening is and illustrate why it is successful as protection against static control flow analysis. Furthermore, we pro [more...] Date: 11 December 2011 - 05:28
Filesize: 160.57 kb
Total Downloads: 60
(Software Testing and Binary Static Analysis:)
Alternating Control Flow Reconstruction
Author: Johannes Kinder, Dmitry Kravchenko Unresolved indirect branch instructions are a major obstacle for statically reconstructing a control flow graph (CFG) from machine code. If static analysis cannot compute a precise set of possible targets for a branch, the necessary conservative over [more...] Date: 11 December 2011 - 05:27
Filesize: 319.42 kb
Total Downloads: 45
(Malware / Security Analysis:)
Boosting Scalability in Anomaly-based Packed Executable Filtering
Author: Xabier Ugarte-Pedrero, Igor Santos, Pablo G. Bringas During the last years, malware writers have been using several techniques to evade detection. One of the most common techniques employed by the anti-virus industry is signature scanning. This method requires the end-host to compare files against a da [more...] Date: 11 December 2011 - 05:26
Filesize: 20 kb
Total Downloads: 86
(Miscellaneous Papers:)
Common WinDbg Commands
Author: Robert Kuster A command reference sheet with parameters and descriptions for using WinDbg. Date: 11 December 2011 - 05:23
Filesize: 179.2 kb
Total Downloads: 98
(Keygenning / Serial Fishing:)
Keygenning Ziggy's KeygenMe #1
Author: dn5 The project we are about to explore and keygen is Ziggy's KeygenMe #1. It is old KeygenMe written in 2005. Date: 11 December 2011 - 05:22
Filesize: 1.06 mb
Total Downloads: 144
(Software Testing and Binary Static Analysis:)
Precise Static Analysis of Binaries by Extracting Relational Information
Author: Alexander Sepp, Bogdan Mihaila, Axel Simon While the reconstruction of the control flow graph of a binary has received wide attention, the challenge of categorizing code into defect-free and possibly incorrect remains a challenge for current static analyses. We present the intermediate langua [more...] Date: 11 December 2011 - 05:21
Filesize: 191.78 kb
Total Downloads: 42
(Mobile Phones / Mobile Device Technology:)
Reverse Engineering of the Android File System
Author: Sven Schmitt, Michael Spreitzenbarth, Christian Zimmermann YAFFS2 is a file system which is used in many modern smartphones. Allthough YAFFS2 is an open standard and there exists an open source implementation, the behavior of YAFFS2 is not very well understood. Additionally, several aspects like wear-levelin [more...] Date: 11 December 2011 - 05:20
Filesize: 787.11 kb
Total Downloads: 147
(Keygenning / Serial Fishing:)
Reversing Zuma555 CrackMe #3
Author: MudLord Decided to get back into reversing after a very long hiatus, in which now I must revise my skills to get back in top form. Figured this was also a good time to write a tutorial in cryptographic keygenning for beginners. This tutorial assumes you have [more...] Date: 11 December 2011 - 05:19
Filesize: 503.06 kb
Total Downloads: 129
(Keygenning / Serial Fishing:)
TDC KeyGenME #8 Solution
Author: Tarequl An explanation of the solution to TDC KeygenMe #8. Date: 11 December 2011 - 05:14
Filesize: 3.5 mb
Total Downloads: 112
(Binary Analysis / Editing:)
BinDiff 4.0
Author: Zynamics Do you need to analyze multiple variations of essentially the same program? Do you need to understand the changes between two versions of a program? Are you trying to detect code theft?
Zynamics BinDiff uses a unique graph-theoretical aproach to a [more...] Date: 09 December 2011 - 22:53
Filesize: 498.33 kb
Total Downloads: 1618
|
 |
|