|
[转帖][转帖]小生我怕怕工具包[2013.04.01]
一堆老掉牙的工具,几乎没什么用了。 |
|
[转帖]OllyDbg plugin code name Swordfish
OllyDbg plugin: Swordfish v1.0 Final release date 31/03/2013 - OllyDbg supported release: 201h - Released by Arab Team for Reverse Engineering (AT4RE) - Coded by torpedo from AT4RE Road map: Work in progress - New beta release v1.1 planned for: 10/04/2013 FEATURES: ----------------------------------------- Tools: ------------------------------------- [+] Clear udd files Hide debugger: ------------------------------------- [+] PEB!BeingDebugged [+] PEB!NtGlobalFlags [+] PEB!HeapFlags [+] Find OD Windows bypass Set breakpoints (hard coded): ------------------------------------- [+] user32.GetWindowTextW [+] user32.GetDlgItemTextW [+] user32.MessageBoxIndirectW [+] user32.MessageBoxTimeoutW [+] user32.SoftModalMessageBox [+] user32.CreateWindowExW [+] user32.ShowWindow [+] kernel32.CreateFileW [+] kernel32.OpenFile [+] kernel32.ReadFile [+] kernel32.WriteFile [+] kernel32.LoadLibraryW [+] kernel32.MoveFileW [+] kernel32.DeleteFileW [+] advapi32.RegOpenKeyExW [+] advapi32.RegCloseKey [+] advapi32.RegQueryValueExW [+] advapi32.RegSetValueExW [+] kernel32.CreateToolhelp32Snapshot [+] kernel32.Process32FirstW [+] kernel32.Module32FirstW [+] Kernel32.Toolhelp32ReadProcessMemory [+] kernel32.OpenProcess [+] kernel32.WriteProcessMemory [+] kernel32.ReadProcessMemory [+] kernel32.CreateProcessW [+] kernel32.VirtualProtectEx [+] advapi32.OpenSCManagerW [+] advapi32.OpenServiceW [+] advapi32.StartServiceW [+] advapi32.DeleteService [+] msvbvm60.ThunRTMain [+] msvbvm60.rtcMsgBox [+] msvbvm60.__vbaStrCmp [+] msvbvm60.__vbaStrComp [+] msvbvm60.__vbaFreeStr [+] msvbvm60.__vbaFileOpen [+] msvbvm60.__vbaInputFile [+] msvbvm60.__vbaWriteFile [+] msvbvm60.__vbaStrCompVar [+] msvbvm60.__vbaStrTextCmp [+] msvbvm60.__vbaFileSeek [+] msvbvm60.__vbaFileClose [+] msvbvm60.__vbaVarTstEq Swordfish_v1.0.rar |
|
[下载]黑客反汇编揭秘 CHM 中文版 个人珍藏
这个跟 PDF 版的有何区别? |
|
[求助]吐血破壳,搞了一个星期了毫无头绪,求支招
楼上的说楼上的应该指的是 Asprotect 有脱壳机。而不是指 SE |
|
[推荐] Scylla Imports Reconstruction 0.9
这个一个多月前就出来了,怎么到了现在才转载过来? |
|
|
|
[转帖]Armadillo_v9.20
果断收藏一个。 |
|
[转帖]OllyExt 1.1 by Ferrit
Win 7 x64 运行出错,提示: Unable to start service, File: OllyExtDriver.cpp Line: 111 |
|
[转帖]OllyDumpEx 1.00 by Low Priority
2.01的那个插件 是针对 2.01g 的,不是 2.01h,可能作者不知道 OD2 升级到 h 了。 |
|
[分享]这就是所谓的“黑狼”“天狼”培训,大家注意了
那个 夜猫VIP工具包 解压密码是多少? |
|
[转帖]OllyDumpEx 1.00 by Low Priority
- v1.10 / 2013-03-24 Add: Search type All Memory Add: Binary dump mode (no rebuild PE header, for before load image) Add: PE32+ support (Binary dump mode only) Add: Memory Address/Size parameters editable (dump source address) Improve: Add info message for Relocation Flag and EXE/DLL type Improve: Large PE Header handling (larger than 0x1000) Improve: Check SectionAlignment and FileAlignment consistency Improve: Reduce search memory usage (not depend on target memory size) Improve: Detect PE Header across different type pages (parse and search) Bugfix: Improper owner window handle Bugfix: Section not listed when belong memory range not exists Bugfix: Almost features broken when memory window sort order changed http://low-priority.appspot.com/ollydumpex/OllyDumpEx.zip |
|
|
|
[求助]类似IDA 流程图的OD 插件叫什么来着?
ollygraph |
|
如何用OD记录"未脱壳前的程序跟脱壳后的程序"它们走过的交集地带跳与不跳的情况
作者不是发布英文版本了吗,看贴子要仔细一点。 |
|
[转帖]EasyController 1.0.3 by esso_x
http://bbs.pediy.com/images/smilies/cool.gif |
|
[转帖]CmpDisAsm 0.76 by DonDD
Patched is fake, crash problem still exist. |
操作理由
RANk
{{ user_info.golds == '' ? 0 : user_info.golds }}
雪币
{{ experience }}
课程经验
{{ score }}
学习收益
{{study_duration_fmt}}
学习时长
基本信息
荣誉称号:
{{ honorary_title }}
能力排名:
No.{{ rank_num }}
等 级:
LV{{ rank_lv-100 }}
活跃值:
在线值:
浏览人数:{{ visits }}
最近活跃:{{ last_active_time }}
注册时间:{{ user_info.create_date_jsonfmt }}
勋章
兑换勋章
证书
证书查询 >
能力值