-
-
[推荐][下载]CrowdDetox for 1.5 and ida 6.1
-
发表于: 2014-2-9 17:03
-
我建立我自己的版本 
我不得不引用了一些代码多数民众赞成在没有现有的1.5版
(english)
I build my own version
i had to quote out thesome code thats none existing in version 1.5
source techbliss.org
hexrays_CrowdDetox - Kopi.rar
我不得不引用了一些代码多数民众赞成在没有现有的1.5版
(english)
I build my own version
i had to quote out thesome code thats none existing in version 1.5
CrowdStrike CrowdDetox Plugin for Hex-Rays
CrowdDetox version 1.0.2 Beta
by Jason Geffner (jason@crowdstrike.com)
The CrowdDetox plugin for Hex-Rays automatically removes junk code and variables from Hex-Rays function decompilations.
LICENSE
Please see the LICENSE file for complete licensing details.
BUILD INSTRUCTIONS
Pre-built versions of the plugin for Windows, Mac OS, and Linux (hexrays_CrowdDetox.plw, hexrays_CrowdDetox.pmc, and hexrays_CrowdDetox.plx, respectively) can be downloaded from 12bK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6h3y4J5L8%4N6V1M7%4c8J5K9h3E0W2i4K6u0W2j5$3!0E0i4K6u0r3j5$3!0E0L8i4g2F1K9i4c8&6i4K6u0V1N6r3!0G2L8s2y4Q4x3V1k6A6L8X3c8W2P5q4)9J5k6h3S2@1L8h3H3`.
If you would like to use the pre-built plugin, you may skip to INSTALLATION INSTRUCTIONS. Otherwise, follow the steps below to build the CrowdDetox plugin.
1. Install IDA Pro with Hex-Rays (f80K9s2c8@1M7s2y4Q4x3@1q4Q4x3V1k6Q4x3V1k6%4N6%4N6Q4x3X3g2Z5k6i4S2Q4x3X3c8J5j5i4W2K6i4K6u0W2j5$3!0E0i4K6t1&6
2. Download and extract the IDA Pro SDK (099K9s2c8@1M7s2y4Q4x3@1q4Q4x3V1k6Q4x3V1k6%4N6%4N6Q4x3X3g2Z5k6i4S2Q4x3X3c8J5j5i4W2K6i4K6u0W2j5$3!0E0i4K6u0r3M7s2u0G2k6s2g2U0N6s2y4Q4x3V1k6A6k6r3q4Q4x3V1k6K6N6i4m8H3L8%4u0@1i4K6u0r3k6r3!0%4L8X3I4G2j5h3c8Q4x3X3g2K6K9s2c8E0L8q4)9J5z5b7`.`.
3. Install CMake (409K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6h3y4E0j5h3E0W2i4K6u0W2L8%4u0Y4i4K6u0r3j5$3#2S2K9$3g2Q4x3V1k6J5k6i4y4G2N6i4u0U0k6i4y4Q4x3V1k6K6L8$3k6@1N6$3q4J5k6g2)9J5k6h3S2@1L8h3I4Q4x3U0V1`.
4. Install a C++ compiler
5. Run CMake on the included CMakeLists.txt file with the following command line arguments: -D IDA_DIR=<path to IDA Pro installation> -D IDA_SDK=<path to IDA Pro SDK>
For example, if you want to build the CrowdDetox plugin with Visual Studio 11 in Windows, your command line may look as follows:
cmake.exe -G "Visual Studio 11" -D CMAKE_MAKE_PROGRAM="C:\Program Files\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe" -D IDA_DIR="C:\Program Files\IDA 6.4" -D IDA_SDK="C:\idasdk64" CMakeLists.txt
6. Build the solution using a C++ compiler. If using Visual Studio in Windows, open the created CrowdDetox.sln solution and build the CrowdDetox project. In Mac OS or Linux, run make.
INSTALLATION INSTRUCTIONS
Copy hexrays_CrowdDetox.plw (for Windows), hexrays_CrowdDetox.pmc (for Mac OS), or hexrays_CrowdDetox.plx (for Linux) to the IDA Pro plugins folder.
UNINSTALLATION INSTRUCTIONS
Remove hexrays_CrowdDetox.plw (for Windows), hexrays_CrowdDetox.pmc (for Mac OS), or hexrays_CrowdDetox.plx (for Linux) from the IDA Pro plugins folder.
USAGE INSTRUCTIONS
To detox a function's decompilation, press 'Shift-F5'.
By default, CrowdDetox considers values and variables used in return statements to be legitimate. Users can manually set a function's prototype to specify a return type of 'void' if the user doesn't want CrowdDetox to consider a function's returned variables to automatically be considered legitimate.
RELEASE NOTES
1.0.2 Beta
-- Defined _countof macro
1.0.1 Beta
-- Detoxing is no longer automatic; users may now press 'Shift-F5' to detox a function's decompilation
-- Returned variables now always considered legitimate by default; users can manually set a function's prototype to specify a return type of 'void' if the user doesn't want CrowdDetox to consider a function's returned variables to automatically be considered legitimate
-- Improved handling of 'continue', 'return', and 'asm' statements
1.0 Beta
-- Initial release
source techbliss.org
hexrays_CrowdDetox - Kopi.rar
