x64dbg
ddisasm
Our great sponsors
x64dbg | ddisasm | |
---|---|---|
32 | 4 | |
42,978 | 607 | |
0.9% | 2.3% | |
9.1 | 9.5 | |
2 days ago | 9 days ago | |
C++ | C++ | |
GNU General Public License v3.0 or later | GNU Affero General Public License v3.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
x64dbg
- we need a 2015E revival.
-
Is there a tool that can show you an EIP trace of a game?
If you want to also do dynamic analysis (debugging) you can use https://x64dbg.com.
-
Don't make fun plz this took 5mins
It's also useful to know for reverse engineering. Similar to how you can hit F12 in your browser and start poking around a sites JavaScript, you can attach a debugger like x64dbg to a native running process and make changes to the program while it's running
-
Decompiling MPRESS packed Autohotkey scripts!
Requirements: MPRESS packed Autohotkey executable, Detect it easy (Also known as DIE), x64dbg, and HxD!
-
What's some github repo to take a look at to get a grasp of real-world C++?
Perhaps you’re interested in my brain child: https://github.com/x64dbg/x64dbg it’s a mess code-wise, but it’s definitely used in the real world 🤷♂️
-
Awesome Penetration Testing
x64dbg - Open source x64/x32 debugger for windows.
-
CPP projects I can get involved in?
You are welcome to contribute to x64dbg, a user mode debugger for Windows. The codebase isn’t the most modern, but there is a branch with a CMake port and modernization is very welcome! Feel free to hit me up if you’re interested and need some pointers :)
- Breaking the software licensing of early-2000s abandonware: reverse engin (cont)
-
Beginner questions
x64dbg: A 32 bit and 64 bit program debugger and disassmbler for Windows
-
RE Unreal .exe file?
[1] https://youtu.be/pzM4o6qxssk [2] https://docs.microsoft.com/en-us/windows-hardware/drivers/debugger/debugger-download-tools [3] https://x64dbg.com [4] Depending on what language the .exe was compiled in a good - free - choice of decompiler framework may be Ghidra https://ghidra-sre.org or https://github.com/dnSpy/dnSpy , native executable vs .Net (managed runtime) executable. Also look into Frida https://frida.re/docs/examples/windows/
ddisasm
-
Starting an open-source re-implementation of an old game
The closest you can get to something like you describe is https://github.com/GrammaTech/ddisasm, but even that won't give you a byte-exact result due to alignment and instruction encoding differences. And it's not perfect, you'll get subtle new bugs. And distributing it is problematic.
-
Is taking the ASM dump from Ida pro after human correction a good way to re-write the software from scratch?
Reassembling is easier but still pretty hard if you want something actually modifiable cause you need to distinguish code and data and find cross-references. There's a research project: https://github.com/GrammaTech/ddisasm
-
Hacking a game with DLL injection [Game Hacking 101]
It would be interesting to explore a different path: https://github.com/GrammaTech/ddisasm
What are some alternatives?
ghidra - Ghidra is a software reverse engineering (SRE) framework
dnSpy - .NET debugger and assembly editor [Moved to: https://github.com/dnSpy/dnSpy]
dnSpy
ImHex - 🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
Disassembler
pycdc - C++ python bytecode disassembler and decompiler
Scylla - Imports Reconstructor
edb-debugger - edb is a cross-platform AArch32/x86/x86-64 debugger.
Detect-It-Easy - Program for determining types of files for Windows, Linux and MacOS.
e9patch - A powerful static binary rewriting tool
juicy-potato - A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.
Win11SysCheck - Windows 11 compability check with user friendly output