x64dbg
reko
Our great sponsors
x64dbg | reko | |
---|---|---|
32 | 9 | |
42,978 | 1,924 | |
0.9% | - | |
9.1 | 9.6 | |
3 days ago | 8 days ago | |
C++ | C# | |
GNU General Public License v3.0 or later | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
x64dbg
- we need a 2015E revival.
-
Is there a tool that can show you an EIP trace of a game?
If you want to also do dynamic analysis (debugging) you can use https://x64dbg.com.
-
Don't make fun plz this took 5mins
It's also useful to know for reverse engineering. Similar to how you can hit F12 in your browser and start poking around a sites JavaScript, you can attach a debugger like x64dbg to a native running process and make changes to the program while it's running
-
Decompiling MPRESS packed Autohotkey scripts!
Requirements: MPRESS packed Autohotkey executable, Detect it easy (Also known as DIE), x64dbg, and HxD!
-
What's some github repo to take a look at to get a grasp of real-world C++?
Perhaps you’re interested in my brain child: https://github.com/x64dbg/x64dbg it’s a mess code-wise, but it’s definitely used in the real world 🤷♂️
-
Awesome Penetration Testing
x64dbg - Open source x64/x32 debugger for windows.
-
CPP projects I can get involved in?
You are welcome to contribute to x64dbg, a user mode debugger for Windows. The codebase isn’t the most modern, but there is a branch with a CMake port and modernization is very welcome! Feel free to hit me up if you’re interested and need some pointers :)
- Breaking the software licensing of early-2000s abandonware: reverse engin (cont)
-
Beginner questions
x64dbg: A 32 bit and 64 bit program debugger and disassmbler for Windows
-
RE Unreal .exe file?
[1] https://youtu.be/pzM4o6qxssk [2] https://docs.microsoft.com/en-us/windows-hardware/drivers/debugger/debugger-download-tools [3] https://x64dbg.com [4] Depending on what language the .exe was compiled in a good - free - choice of decompiler framework may be Ghidra https://ghidra-sre.org or https://github.com/dnSpy/dnSpy , native executable vs .Net (managed runtime) executable. Also look into Frida https://frida.re/docs/examples/windows/
reko
-
Educating myself about Monitor Firmware --
In the zip are 3 firmwares, NXP, PD and Scalar. NXP is the USB microcontroller that's used to update the scalar firmware, and PD is for USB-C stuff. The scalar firmware's name was 28MQ780_MSTAR_MST9W00V4_V3.3.0_0x12FBF031_shad4015bb_220317.bin, which already gave me a few more data points, specifically the chip that's used, the MStar MST9W00V4. Eventually I found this extremely annoying post which had the compiler used for the chip and this page telling me that my scalar's CPU architecture was proprietary, but based on OpenRisc. It turned out that the stars had aligned or something and there were no less than 3 people interested in this particular ISA in the last 3 weeks, because someone else had asked about it and apparently a niche disassembler added partial support for it.
- .NET is often seen as corporate and boring – What are some interesting/cool/unique projects and people?
- Reko decompiler v0.11.0 released
- Which project are you guys doing ?
-
Reko decompiler v0.10.0 released
Reko has the ambition of supporting decompilation of various processor architectures and executable file formats with minimal user intervention. For a complete list, see the supported binaries page.
What are some alternatives?
ghidra - Ghidra is a software reverse engineering (SRE) framework
dnSpy - .NET debugger and assembly editor [Moved to: https://github.com/dnSpy/dnSpy]
dnSpy
ImHex - 🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
pycdc - C++ python bytecode disassembler and decompiler
Disassembler
Scylla - Imports Reconstructor
edb-debugger - edb is a cross-platform AArch32/x86/x86-64 debugger.
ILSpy - .NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform!
ddisasm - A fast and accurate disassembler
Detect-It-Easy - Program for determining types of files for Windows, Linux and MacOS.
juicy-potato - A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.