|3 months ago||3 months ago|
|GNU General Public License v3.0 only||Apache License 2.0|
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
I'm looking for a program-flow highlighting tool. Any ideas?
2 projects | /r/AskReverseEngineering | 8 Feb 2022
ret-sync: synchronize a debugger (WinDbg / GDB / LLDB / OllyDbg2 / x64dbg) with a disassembler (IDA / Ghidra / Binary Ninja) in which you can colorize the trace. See the bc command.
Announcing version 7.6 for IDA Freeware! Includes cloud based decompiler.
2 projects | /r/ReverseEngineering | 10 May 2021
N00bs Night Malware RE Workshop with @c3rb3ru5d3d53c (OALABS)
5 projects | /r/Malware | 11 Jun 2023
Python3 Environment Basics For IDA Pro (Windows) https://www.patreon.com/posts/python3-basics-58467121 Hexcopy (save a click) https://github.com/OALabs/hexcopy-ida HashDB https://github.com/OALabs/hashdb-ida Flare-IDA https://github.com/mandiant/flare-ida Capa https://github.com/mandiant/capa Capa Rules https://github.com/mandiant/capa-rules BinDiff https://www.youtube.com/watch?v=BLBjcZe-C3I
Problems generating and applying FLIRT signatures in IDA for UE4 project
2 projects | /r/REGames | 14 Apr 2021
Now it's time to generate pattern files with idb2pat.py script on FLARE github. This one works up to version 7.3 including and doesn't work on 7.4+ because of changes in API calls of IDA. I updated it for IDA 7.5(just renamed a bunch of API calls to different names according to this article by hexrays for porting scripts to newer versions of IDA), but I run into the same problems on 7.2 with the original script.
What are some alternatives?
ghidra - Ghidra is a software reverse engineering (SRE) framework
REDRIVER2 - Driver 2 Playstation game reverse engineering effort
radare2 - UNIX-like reverse engineering framework and command-line toolset
flare-fakenet-ng - FakeNet-NG - Next Generation Dynamic Network Analysis Tool
tenet - A Trace Explorer for Reverse Engineers
Ghidra-Cpp-Class-Analyzer - Ghidra C++ Class and Run Time Type Information Analyzer
capstone - Capstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings. [Moved to: https://github.com/capstone-engine/capstone]
ghidra_scripts - Port of devttyS0's IDA plugins to the Ghidra plugin framework, new plugins as well.
lumen - A private Lumina server for IDA Pro
ghidra-ci - Nightly builds of NSA's Ghidra
semblance - Disassembler for Windows executables. Supports 16-bit NE (New Executable), MZ (DOS), and PE (Portable Executable, i.e. Win32) files.
flare-vm - A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.