dza + reverse-engineering 111
Confuser - Home
6 weeks ago by dza
C# code obfuscation, encryption, packing ...
Seems to be THE tool for the job.
confuser
csharp
reverse-engineering
reverse
obfuscator
pack
packer
cil
dbugger
decompiler
decompilation
encrypt
encryption
security
dev
Seems to be THE tool for the job.
6 weeks ago by dza
Add Your Control On Top Another Application - CodeProject
7 weeks ago by dza
Awesome guide howto inject controls into other programs.
pinvoke
control
hover
attach
inject
FindWindow
SetWindowLong
GetTitleBarInfo
SetWinEventHook
win32api
win32
dev
IntPtr
SetWindowLongPtr
HoverControl
hook
WinEventProc
howto
tutorial
guide
SetControl
GetWindowPosition
WinEventHook
reverse-engineering
reverse
7 weeks ago by dza
Software archaeology
8 weeks ago by dza
asmDIFF | An x86 binary assembler search tool
asmDiff is an binary assembly search, diff and disassembly tool. It supports Windows PE (exe/dll) and Linux ELF binary format compiled for x86 and x68_64 architectures. It is particular useful when searching for asm functions, instructions or memory pointers in a patched, updated or otherwise modified binary. Try out the live demo and read the paper below.
Note: asmDIFF is still closed source as long as we do not know how to proceed with it. Feel free to contact us on questions, suggestions, or licensing request. However a fully useable win32 version is included in mmBBQ 3.0.0 and upwards.
Quick start:
upload two binaries files. (exe/dll/elf)
$> asmdiff search <ADDR> -o <OLDFILE> -n <NEWFILE>
$> asmdiff diff -o /usr/bin/asmdiff -n /usr/bin/asmdiff
assembly
reverse-engineering
reverse
security
diff
instruction
instructions
asm
asmDiff is an binary assembly search, diff and disassembly tool. It supports Windows PE (exe/dll) and Linux ELF binary format compiled for x86 and x68_64 architectures. It is particular useful when searching for asm functions, instructions or memory pointers in a patched, updated or otherwise modified binary. Try out the live demo and read the paper below.
Note: asmDIFF is still closed source as long as we do not know how to proceed with it. Feel free to contact us on questions, suggestions, or licensing request. However a fully useable win32 version is included in mmBBQ 3.0.0 and upwards.
Quick start:
upload two binaries files. (exe/dll/elf)
$> asmdiff search <ADDR> -o <OLDFILE> -n <NEWFILE>
$> asmdiff diff -o /usr/bin/asmdiff -n /usr/bin/asmdiff
8 weeks ago by dza
Blizzhackers • Index page
8 weeks ago by dza
One of the most epic Reverse-Engineering gaming sites on the internet :) for one of the most secure online platforms, powered by one of the most feared ban-hammers (Warden).
game
gaming
reverse-engineering
reverse
howto
tutorial
guide
warcraft
starcraft
world
of
1
2
3
wc3
sc2
sc
wc
wow
warden
hook
hooks
d3
diablo
blizzard
8 weeks ago by dza
OpenRCE (OpenRCE)
8 weeks ago by dza
sulley
A pure-python fully automated and unattended fuzzing framework.
Last updated 5 months ago
Python
76
32
paimei
A reverse engineering framework written in Python.
Last updated a year ago
Python
60
25
pydbg
A pure-python win32 debugger interface.
Last updated a year ago
openrce
reverse-engineering
reverse
pydbg
sulley
paimei
github
A pure-python fully automated and unattended fuzzing framework.
Last updated 5 months ago
Python
76
32
paimei
A reverse engineering framework written in Python.
Last updated a year ago
Python
60
25
pydbg
A pure-python win32 debugger interface.
Last updated a year ago
8 weeks ago by dza
wxHexEditor - a Free Hex Editor / Disk Editor for Huge Files or Devices on Linux, Windows and MacOSX
10 weeks ago by dza
Looks like a decent free Hex editor with interesting features such as:
* Disassembly instructions
* Conversion
* and more!
From the creator of the custom SAMSUNG TV firmware SamyGo
hex
edit
editor
win
linux
mac
macosx
win32
disassembly
reverse-engineering
reverse
software
windows
* Disassembly instructions
* Conversion
* and more!
From the creator of the custom SAMSUNG TV firmware SamyGo
10 weeks ago by dza
Bios Mods -The Best BIOS Update and Modification Source
11 weeks ago by dza
* CPU Support Upgrades
* Unlocking of OC, and hidden menus
* HDD limit Upgrades
* Wifi/WWAN Replacement, Whitelist (mini PCI-e replacement)
Be sure to check the forum!
bios
mods
ami
award
phoenix
AFUDOS
PHLASH
insyde
wlan
wifi
howto
tutorials
guide
reverse-engineering
reverse
* Unlocking of OC, and hidden menus
* HDD limit Upgrades
* Wifi/WWAN Replacement, Whitelist (mini PCI-e replacement)
Be sure to check the forum!
11 weeks ago by dza
zynamics.com - BinDiff
12 weeks ago by dza
Comparing two executables to learn from already cracked programs in a graphed assembly output for education, GREAT!
asm
reverse-engineering
reverse
compare
difference
diff
comparing
crack
cracking
binary
12 weeks ago by dza
Reverse Engineering 1 - YouTube
12 weeks ago by dza
Basic understanding of Reverse-Engineering and ASM instructions. Great examples, great voice, long, thorough.
reverse-engineering
beginner
asm
assembly
reverse
basic
12 weeks ago by dza
winapiexec - RaMMicHaeL's home page
12 weeks ago by dza
Run Win32 API functions directly from the command-line.
Pretty handy for reversing huh?
win32
winapi
windows
api
exec
reverse-engineering
reverse
Pretty handy for reversing huh?
12 weeks ago by dza
winitor
12 weeks ago by dza
PeStudio helps you to discover many security relevant details about any application and library without starting them, like:
whether Applications are embedded in an application
whether Registry files are embedded in an application
whether PDF files are embedded in an application
whether CAB files are embedded in an application
whether Anonymous functions are exported
whether Obsolete functions are imported
whether Data Execution Prevention (DEP) will be used
whether Address Space Layout Randomization (ASLR) is used
whether Structured Exception Handling (SEH) is used
whether Unused bytes (Caves) are available
whether Structured Storage is used
whether The file is obfuscated (encrypted, compressed)
and many more details...
pestudio
reverse-engineering
reverse
tool
tools
download
whether Applications are embedded in an application
whether Registry files are embedded in an application
whether PDF files are embedded in an application
whether CAB files are embedded in an application
whether Anonymous functions are exported
whether Obsolete functions are imported
whether Data Execution Prevention (DEP) will be used
whether Address Space Layout Randomization (ASLR) is used
whether Structured Exception Handling (SEH) is used
whether Unused bytes (Caves) are available
whether Structured Storage is used
whether The file is obfuscated (encrypted, compressed)
and many more details...
12 weeks ago by dza
Linux system debugging super tutorial
december 2012 by dza
Debugging with GDB, strace, ltrace and lsof on slow processes ...
howto
tutorial
guide
dev
lsof
linux
strace
ltrace
profile
profiling
reverse
reverse-engineering
december 2012 by dza
How main() is executed on Linux LG #84
september 2012 by dza
Starting
The question is simple: how does linux execute my main()?
Through this document, I'll use the following simple C program to illustrate how it works. It's called "simple.c"
main()
{
return(0);
}
Build
gcc -o simple simple.c
What's in the executable?
To see what's in the executable, let's use a tool "objdump"
objdump -f simple
simple: file format elf32-i386
architecture: i386, flags 0x00000112:
EXEC_P, HAS_SYMS, D_PAGED
start address 0x080482d0
The output gives us some critical information about the executable.
First of all, the file is "ELF32" format. Second of all, the start address is "0x080482d0"
asm
assembly
reverse-engineering
reverse
linux
objdump
gcc
howto
tutorial
guide
dev
The question is simple: how does linux execute my main()?
Through this document, I'll use the following simple C program to illustrate how it works. It's called "simple.c"
main()
{
return(0);
}
Build
gcc -o simple simple.c
What's in the executable?
To see what's in the executable, let's use a tool "objdump"
objdump -f simple
simple: file format elf32-i386
architecture: i386, flags 0x00000112:
EXEC_P, HAS_SYMS, D_PAGED
start address 0x080482d0
The output gives us some critical information about the executable.
First of all, the file is "ELF32" format. Second of all, the start address is "0x080482d0"
september 2012 by dza
Tavis Ormandy - Executable Patching with GDB
may 2012 by dza
Some really professional advice, from an Opera dev- I stumbled upon this guy searching for some Opera advice at another time :)
He looks very talented and writes a good article.
gdb
reverse
reverse-engineering
patch
patching
debug
debugging
assembly
asm
nasm_assemble
gdbinit
assemble
He looks very talented and writes a good article.
may 2012 by dza
Binary File Descriptor library - Wikipedia, the free encyclopedia
may 2012 by dza
The Binary File Descriptor library (BFD) is the GNU Project's main mechanism for the portable manipulation of object files in a variety of formats. As of 2003, it supports approximately 50 file formats for some 25 processor architectures.
bfd
binary
file
descriptor
library
gdb
reverse
reverse-engineering
assembly
asm
may 2012 by dza
Beej's Quick Guide to GDB
may 2012 by dza
Compiling to use a debugger
More Information
License
Starting gdb and getting to main()
Breakpoints
Stepping Around
Examining Variables
Misc Stuff
Stack Manipulation
Additional Stepping Methods
Jumping to an Arbitrary Section of Code
Changing Variables and Values at Runtime
Hardware Watchpoints
Attach to a Running Process
Using Coredumps for Postmortem Analysis
Window Functions
Display Registers and Assembly
Writing a Front-End
Quick Reference Cheat Sheet
gdb
break
breakpoint
breakpoints
step
stepping
debug
debugging
asm
assembly
reverse
reverse-engineering
coredump
coredumps
stack
stacks
variable
variables
values
watch
watchpoints
attach
window
function
functions
register
registers
cheatsheet
cheatsheets
More Information
License
Starting gdb and getting to main()
Breakpoints
Stepping Around
Examining Variables
Misc Stuff
Stack Manipulation
Additional Stepping Methods
Jumping to an Arbitrary Section of Code
Changing Variables and Values at Runtime
Hardware Watchpoints
Attach to a Running Process
Using Coredumps for Postmortem Analysis
Window Functions
Display Registers and Assembly
Writing a Front-End
Quick Reference Cheat Sheet
may 2012 by dza
IMMUNITY : Knowing You're Secure
april 2012 by dza
A debugger support Python as scripting language.
security
immunity
debug
debugging
reverse
reverse-engineering
crack
cracking
python
malware
analysis
dev
april 2012 by dza
dirtyJOE - Java Overall Editor - Homepage of binary java class file editor
april 2012 by dza
dirty
>JOE<
Java Overall Editor
For Reverse-Engineering java .class files ..
reverse
reverse-engineering
dirtyjoe
class
java
dev
python
>JOE<
Java Overall Editor
For Reverse-Engineering java .class files ..
april 2012 by dza
Assembly - SkullSecurity
april 2012 by dza
Fundamentals -- Information about C
Tools
Registers
Simple Instructions
Example 1 -- SC CDKey Initial Verification
Example 2 -- SC CDKey Shuffle
Example 2b -- SC CDKey Final Decode
The Stack
Stack Example
Functions
Example 3 -- Storm.dll SStrChr
Assembly Summary
Machine Code
Example 4 -- Smashing the Stack
Cracking a Game
Example 5 -- Cracking a game
Example 6 -- Writing a keygen
.dll Injection and Patching
Memory Searching
Example 7 -- Writing a cheat for Starcraft (1.05)
Example 7 Step 1 -- Displaying Messages
Example 7 Step 1b -- Above, w/ func ptrs
Example 7 Final
Example 8 -- Getting IX86.dll files
16-bit Assembly
Example 9 -- Keygen for a 16-bit game
Example 10 -- Writing a loader
skullsecurity
asm
assembly
assembler
starcraft
cdkey
cd-key
stack
crack
cracking
keygen
keygenning
reverse
reverse-engineering
cheat
16-bit
loader
Tools
Registers
Simple Instructions
Example 1 -- SC CDKey Initial Verification
Example 2 -- SC CDKey Shuffle
Example 2b -- SC CDKey Final Decode
The Stack
Stack Example
Functions
Example 3 -- Storm.dll SStrChr
Assembly Summary
Machine Code
Example 4 -- Smashing the Stack
Cracking a Game
Example 5 -- Cracking a game
Example 6 -- Writing a keygen
.dll Injection and Patching
Memory Searching
Example 7 -- Writing a cheat for Starcraft (1.05)
Example 7 Step 1 -- Displaying Messages
Example 7 Step 1b -- Above, w/ func ptrs
Example 7 Final
Example 8 -- Getting IX86.dll files
16-bit Assembly
Example 9 -- Keygen for a 16-bit game
Example 10 -- Writing a loader
april 2012 by dza
Academic Underground: The Examiner
april 2012 by dza
Makes it easier to read OBJDUMP by adding comments.
objdump
examiner
debug
debugging
linux
asm
assembly
reverse
reverse-engineering
april 2012 by dza
Amazon.com: Reversing: Secrets of Reverse Engineering (9780764574818): Eldad Eilam: Books
april 2012 by dza
I read some of this, it's quite booring actually, not much of a starter book.
book
ebook
books
wishlist
asm
disassembling
disassemble
assembly
reverse
reverse-engineering
engineering
debugger
debugging
april 2012 by dza
w4kfu's bl0g
march 2012 by dza
Google Translate (mixed french/english)
Diablo II securom v4 tutorial (French)
Red Alert: Tiberian Sun safedisc aka c-dilla (English)
Version 41 of SafeDisc 1 (Tutorial)
Safedisc 2 (Tutorial)
Prioxer Trojan/backdoor analysis (Tutorial)
"binary-auditing.com" unpackme (Tutorial)
Great blog.
howto
tutorial
guide
reverse
reverse-engineering
malware
virus
analysis
french
crack
cracking
safedisc
c-dilla
cdilla
Diablo II securom v4 tutorial (French)
Red Alert: Tiberian Sun safedisc aka c-dilla (English)
Version 41 of SafeDisc 1 (Tutorial)
Safedisc 2 (Tutorial)
Prioxer Trojan/backdoor analysis (Tutorial)
"binary-auditing.com" unpackme (Tutorial)
Great blog.
march 2012 by dza
Baboon's Blog
march 2012 by dza
Google Translate this (French)
howto
tutorial
guide
hack
hacking
reverse
reverse-engineering
debug
debugging
asm
french
march 2012 by dza
Ivanlef0u's Blog » RE
march 2012 by dza
Google Translate this (French)
howto
tutorial
guide
hack
hacking
reverse
reverse-engineering
debug
debugging
asm
french
march 2012 by dza
Binary world for binary people :)
march 2012 by dza
Little crackme/keygenme and network security / hacking
exploit
exploits
hack
hacking
security
network
networking
reverse
reverse-engineering
march 2012 by dza
[ Shell-Storm.org ] | Papers |
march 2012 by dza
Lots of really interesting stuff.
howto
tutorial
guide
security
hack
hacking
exploit
exploits
DEP
reverse
reverse-engineering
cheatsheet
anti-debug
anti-debugging
SEHOP
ARM
ASLR
stack
overflow
overflows
smashing
protector
ROP
SEH
shellcode
WPM
GDT
LDT
windows
kernel
mac
osx
c++
python
steganography
crc
php
firewall
firewalls
wifi
wireless
heap
protection
protections
malware
activex
crack
cracking
rce
buffer
pbx
dynamic
c
march 2012 by dza
Recurity Labs
march 2012 by dza
Basic to advanced ASM (haven't read it)
howto
tutorial
guide
security
asm
assembly
reverse
reverse-engineering
march 2012 by dza
ScrontSoft - Includes
march 2012 by dza
DirectX 8 assembly tutorials / examples ..
win32
windows
directx
d3d
d3d8
dx8
directx8
asm
assembly
reverse-engineering
reverse
march 2012 by dza
DEFCON 18: How to Apply Reverse Engineering Techniques to Cheat at Video Games 1/3 - YouTube
march 2012 by dza
Maphack technique for Supreme Commander.
kartograph
maphack
reverse-engineering
reverse
tutorial
howto
guide
video
supreme
defcon
commander
2
trainer
march 2012 by dza
Dalvik opcodes
march 2012 by dza
Reference for opcodes ..
dalvik
android
reverse-engineering
reverse
reference
security
crack
cracking
march 2012 by dza
Primer on Android OS Reversing / Tutorials / Downloads - ARTeam Website
march 2012 by dza
The most awesome introduction to Android Reverse Engineering, an easy task.
android
os
reverse-engineering
reverse
engineering
howto
tutorial
guide
march 2012 by dza
related tags
16-bit ⊕ activex ⊕ AFUDOS ⊕ american ⊕ ami ⊕ analysis ⊕ android ⊕ anti-debug ⊕ anti-debugging ⊕ api ⊕ apihooks ⊕ archived ⊕ ARM ⊕ ascii ⊕ ASLR ⊕ asm ⊕ asm.js ⊕ assemble ⊕ assembler ⊕ assembly ⊕ attach ⊕ attaching ⊕ avd ⊕ award ⊕ backdoor ⊕ basic ⊕ beginner ⊕ bfd ⊕ biew ⊕ binary ⊕ bios ⊕ bitcoin ⊕ blizzard ⊕ book ⊕ books ⊕ boot ⊕ booting ⊕ bpx ⊕ break ⊕ breakpoint ⊕ breakpoints ⊕ bsd ⊕ buffer ⊕ c ⊕ c++ ⊕ c-dilla ⊕ call ⊕ calls ⊕ cd-key ⊕ cdilla ⊕ cdkey ⊕ chat ⊕ chatting ⊕ cheat ⊕ cheatsheet ⊕ cheatsheets ⊕ cil ⊕ class ⊕ code ⊕ commander ⊕ compare ⊕ comparing ⊕ compressor ⊕ compressors ⊕ confuser ⊕ connscan ⊕ connscan2 ⊕ control ⊕ coredump ⊕ coredumps ⊕ crack ⊕ cracker ⊕ cracking ⊕ crackme ⊕ crackmes ⊕ cracks ⊕ crash ⊕ crc ⊕ csharp ⊕ d3 ⊕ d3d ⊕ d3d8 ⊕ dalvik ⊕ date ⊕ datetime ⊕ dbg ⊕ dbugger ⊕ dead ⊕ death ⊕ debian ⊕ debug ⊕ debugger ⊕ debuggers ⊕ debugging ⊕ decompilation ⊕ decompiler ⊕ defcon ⊕ DEP ⊕ descriptor ⊕ dev ⊕ device ⊕ diablo ⊕ diablo3 ⊕ diff ⊕ difference ⊕ directx ⊕ directx8 ⊕ dirtyjoe ⊕ disassemble ⊕ disassembler ⊕ disassemblers ⊕ disassembling ⊕ disassembly ⊕ download ⊕ download.this ⊕ dump ⊕ dumping ⊕ dx8 ⊕ dynamic ⊕ ebook ⊕ edb ⊕ edit ⊕ editor ⊕ editors ⊕ elf ⊕ emu ⊕ emulator ⊕ encrypt ⊕ encryption ⊕ engineering ⊕ evan's ⊕ evans ⊕ examiner ⊕ exec ⊕ exploit ⊕ exploiting ⊕ exploits ⊕ file ⊕ file-analyzer ⊕ file-analyzers ⊕ FindWindow ⊕ firewall ⊕ firewalls ⊕ fishme ⊕ foff ⊕ forum ⊕ french ⊕ function ⊕ functions ⊕ game ⊕ gaming ⊕ gcc ⊕ gdb ⊕ gdbinit ⊕ GDT ⊕ gendump ⊕ getlocaltime ⊕ getsystemtime ⊕ getsystemtimeasfiletime ⊕ GetTitleBarInfo ⊕ GetWindowPosition ⊕ github ⊕ google ⊕ guide ⊕ hack ⊕ hacker ⊕ hacking ⊕ hash ⊕ header ⊕ headers ⊕ heap ⊕ help ⊕ hex ⊕ hivelist ⊕ hook ⊕ hooks ⊕ hover ⊕ HoverControl ⊕ howto ⊕ humor ⊕ ia-32 ⊕ ia32 ⊕ iii ⊕ immunity ⊕ impacket ⊕ inject ⊕ instruction ⊕ instructions ⊕ insyde ⊕ INt3 ⊕ intel ⊕ IntPtr ⊕ java ⊕ javascript ⊕ js ⊕ kartograph ⊕ kernel ⊕ keygen ⊕ keygenme ⊕ keygenmes ⊕ keygenning ⊕ keygens ⊕ keylog ⊕ keylogger ⊕ krobar ⊕ LDT ⊕ library ⊕ link ⊕ links ⊕ linux ⊕ lm ⊕ loader ⊕ lsof ⊕ ltrace ⊕ mac ⊕ macosx ⊕ malfind ⊕ malware ⊕ maphack ⊕ market ⊕ megatrends ⊕ memdump ⊕ memory ⊕ mode ⊕ mods ⊕ moonsols ⊕ nasm_assemble ⊕ network ⊕ networking ⊕ newbie ⊕ news ⊕ ntfs ⊕ ntlm ⊕ obfuscator ⊕ objdump ⊕ of ⊕ olly ⊕ ollydbg ⊕ onlinehashcrack ⊕ opcode ⊕ opcodes ⊕ openrce ⊕ opensourcedays ⊕ ophcrack ⊕ os ⊕ osd ⊕ osd13 ⊕ osx ⊕ other ⊕ others ⊕ overflow ⊕ overflows ⊕ pack ⊕ packer ⊕ paimei ⊕ patch ⊕ patcher ⊕ patchers ⊕ patching ⊕ pbx ⊕ pcapy ⊕ peid ⊕ perl ⊕ pestudio ⊕ PHLASH ⊕ phoenix ⊕ php ⊕ pinvoke ⊕ play ⊕ profile ⊕ profiling ⊕ programming ⊕ protected ⊕ protection ⊕ protections ⊕ protector ⊕ protectors ⊕ pslist ⊕ pwdump ⊕ pydbg ⊕ python ⊕ qt ⊕ quickstart ⊕ radare ⊕ RAM ⊕ RC4 ⊕ rce ⊕ re ⊕ readelf ⊕ real ⊕ RED ⊕ reddit ⊕ reference ⊕ register ⊕ registers ⊕ registration ⊕ reverse ⊕ reverse-engineering ⊖ reverseenginerring ⊕ reversing ⊕ ROP ⊕ safedisc ⊕ sam ⊕ samsung ⊕ sc ⊕ sc2 ⊕ security ⊕ segment ⊕ segments ⊕ SEH ⊕ SEHOP ⊕ serial ⊕ serials ⊕ SetControl ⊕ SetWindowLong ⊕ SetWindowLongPtr ⊕ SetWinEventHook ⊕ shellcode ⊕ skullsecurity ⊕ smarttv ⊕ smashing ⊕ SnD ⊕ softice ⊕ software ⊕ stack ⊕ stacks ⊕ starcraft ⊕ steganography ⊕ step ⊕ stepping ⊕ stick ⊕ strace ⊕ sulley ⊕ supreme ⊕ syscall ⊕ syscalls ⊕ system ⊕ table ⊕ TDL ⊕ themida ⊕ time ⊕ timewaste ⊕ tool ⊕ toolkit ⊕ tools ⊕ trainer ⊕ trial ⊕ tsbx ⊕ tutorial ⊕ tutorials ⊕ uefi ⊕ unicode ⊕ unix ⊕ unpacker ⊕ unpackers ⊕ unreal ⊕ usb ⊕ values ⊕ variable ⊕ variables ⊕ video ⊕ virtual ⊕ virus ⊕ vol ⊕ vol.py ⊕ volshell ⊕ w32dasm ⊕ warcraft ⊕ warden ⊕ wargame ⊕ wargames ⊕ watch ⊕ watchpoints ⊕ wc ⊕ wc3 ⊕ wdbg ⊕ wifi ⊕ wikibooks ⊕ win ⊕ win32 ⊕ win32api ⊕ win32dd ⊕ winapi ⊕ window ⊕ windows ⊕ WinEventHook ⊕ WinEventProc ⊕ winpcap ⊕ wireless ⊕ wishlist ⊕ wlan ⊕ world ⊕ wow ⊕ WPM ⊕ x86 ⊕ xbox ⊕Copy this bookmark: