zsteg
peda
zsteg | peda | |
---|---|---|
4 | 7 | |
1,187 | 5,751 | |
- | - | |
0.0 | 0.0 | |
about 1 month ago | 4 days ago | |
Ruby | Python | |
- | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
zsteg
-
Do you think there’s something hidden in this pic?
Yeah, and it's open source.
-
Yesterday afternoon a new account shared this image in Alex Bale's fan Discord. Can you help me analyze? I've been trying for a minute.
zsteg didn't find anything. reddit strips any exif. Didn't see any weird strings.
-
CTF Writeup: picoCTF 2022 Forensics
I decided to use zsteg instead, with the -a option to try all known methods, and the -v option to run verbosely,
-
Awesome CTF : Top Learning Resource Labs
Zsteg - PNG/BMP analysis.
peda
- Emulating an emulator inside itself. Meet Blink
- Are there any cpu emulators that could help me learn i386 assembly?
-
GDB Verbose Output
Looks like they are using PEDA.
-
Hacked GDB Dashboard Puts It All on Display
There are a lot of these types of tools already in the reverse engineering community (in order of lowest chance of breaking when you throw really weird stuff at it):
GEF: https://gef.readthedocs.io/en/master/
PWNDBG: https://github.com/pwndbg/pwndbg
PEDA: https://github.com/longld/peda
They also come with a slew of different features to aid in RE/exploit dev, but many of them are also useful for debugging really weird issues.
-
Awesome CTF : Top Learning Resource Labs
PEDA - GDB plugin (only python2.7).
-
Awesome Penetration Testing
peda - Python Exploit Development Assistance for GDB.
-
GDB PEDA not being used by default?
Did you follow the instructions? Step 2 adds PEDA to your ~/.gdbinit so it will/should load every time you open gdb. So if it doesn't work check your ~/.gdbinit file.
What are some alternatives?
gef - GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux
UglifyJS2 - JavaScript parser / mangler / compressor / beautifier toolkit
pwndbg - Exploit Development and Reverse Engineering with GDB Made Easy
hashcat - World's fastest and most advanced password recovery utility
pwntools - CTF framework and exploit development library
CyberChef - The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
dvcs-ripper - Rip web accessible (distributed) version control systems: SVN/GIT/HG...
apk2gold - CLI tool for decompiling Android apps to Java. It does resources! It does Java! Its real easy!
objection - 📱 objection - runtime mobile exploration
Metasploit - Metasploit Framework