TheLegendOfRandom.com Reverse Engineering and Programming 2012-11-28T21:28:29+00:00 forum/feed.php?f=9 2012-11-28T21:28:29+00:00 2012-11-28T21:28:29+00:00 forum/viewtopic.php?t=16&p=3869#p3869 <![CDATA[Tools • Re: Programming tools]]> visual studio 2008
notepad++
openwatcom
DevC++

Statistics: Posted by netesy — Wed Nov 28, 2012 9:28 pm

]]> 2012-11-05T20:47:27+00:00 2012-11-05T20:47:27+00:00 forum/viewtopic.php?t=1534&p=3277#p3277 <![CDATA[Tools • Re: Debug 64bit executables with IDA]]>
hawaii67 wrote:
Ugdbg:
http://ugdbg.sourceforge.net/

VisualDux debugger supports 64 bit as well:
http://www.duxcore.com/products.html

Thanks i will look into them,anyway i found a solution on a chinese website(lol),you must launch a exe in the ida folder that acts as a server and not the one that ida prompt when it display the error
edit for those seeking the solution:
http://www.h4ck.org.cn/2011/07/unpack-6 ... ug-plugin/

Statistics: Posted by kdma — Mon Nov 05, 2012 8:47 pm

]]> 2012-11-05T14:54:04+00:00 2012-11-05T14:54:04+00:00 forum/viewtopic.php?t=1534&p=3260#p3260 <![CDATA[Tools • Re: Debug 64bit executables with IDA]]> http://ugdbg.sourceforge.net/

VisualDux debugger supports 64 bit as well:
http://www.duxcore.com/products.html

Statistics: Posted by hawaii67 — Mon Nov 05, 2012 2:54 pm

]]> 2012-11-05T13:32:38+00:00 2012-11-05T13:32:38+00:00 forum/viewtopic.php?t=1534&p=3258#p3258 <![CDATA[Tools • Debug 64bit executables with IDA]]> So i downloaded it and tried to analyze a executable but i dont understand how to use the debug feature,there are 4 possibile debuggers to use Bochsdbg Windbg and two remote dbgs,of course the first two dont work at all since bochs gives me an error about a plugin and searching with google provides nothing( i had to download Bochs separately),windbg asks to launch a server and again it doesnt work
Can someone point me in the right direction?i tought it was meant to work out of the box and i cant seem to find anything regarding those issues(it works fine with 32 bit executables)
thank you

Statistics: Posted by kdma — Mon Nov 05, 2012 1:32 pm

]]> 2012-10-03T01:29:32+00:00 2012-10-03T01:29:32+00:00 forum/viewtopic.php?t=16&p=2676#p2676 <![CDATA[Tools • Re: Programming tools]]> :D :D

Statistics: Posted by assasaha — Wed Oct 03, 2012 1:29 am

]]> 2012-10-02T23:26:40+00:00 2012-10-02T23:26:40+00:00 forum/viewtopic.php?t=1123&p=2675#p2675 <![CDATA[Tools • Re: VMProtect tools for XorKing]]>
XorKing wrote:
Thanks Random, I tried but i don`t think it is working and it is a unpacker, but i m looking for a tutorial like how to unpack vmprotect file in olly.


You should take a look at the stuff from "LFC-AT" which released a lot of videos and scripts to defeat vmprotect (Can be found in the tuts4you database / board).

~Zer0Flag

Statistics: Posted by Zer0Flag — Tue Oct 02, 2012 11:26 pm

]]> 2012-10-02T17:47:02+00:00 2012-10-02T17:47:02+00:00 forum/viewtopic.php?t=1123&p=2668#p2668 <![CDATA[Tools • Re: VMProtect tools for XorKing]]> Statistics: Posted by XorKing — Tue Oct 02, 2012 5:47 pm

]]> 2012-10-02T15:25:40+00:00 2012-10-02T15:25:40+00:00 forum/viewtopic.php?t=1123&p=2661#p2661 <![CDATA[Tools • VMProtect tools for XorKing]]> Statistics: Posted by random — Tue Oct 02, 2012 3:25 pm

]]> 2012-09-28T17:48:42+00:00 2012-09-28T17:48:42+00:00 forum/viewtopic.php?t=1092&p=2607#p2607 <![CDATA[Tools • Re: Themida - Winlicense 1.x - 2.x Multi PRO Edition 1.2]]> Statistics: Posted by dolhaps2000 — Fri Sep 28, 2012 5:48 pm

]]> 2012-09-28T17:01:08+00:00 2012-09-28T17:01:08+00:00 forum/viewtopic.php?t=1092&p=2604#p2604 <![CDATA[Tools • Re: Themida - Winlicense 1.x - 2.x Multi PRO Edition 1.2]]> Statistics: Posted by random — Fri Sep 28, 2012 5:01 pm

]]> 2012-09-28T17:47:34+00:00 2012-09-28T15:38:14+00:00 forum/viewtopic.php?t=1092&p=2601#p2601 <![CDATA[Tools • Themida - Winlicense 1.x - 2.x Multi PRO Edition 1.2]]> ****************************************************
( 1.) Unpacking of WinLicense & TheMida Targets
( 2.) Three Way Unpack Choice Possibilities x3
( 3.) Supports IAT Special Patch & ESP CRC Checking
( 4.) Use UIF or ImportsFixer or Script + DI Patch
( 5.) Code-En-Crypt Fixer
( 6.) Cryp-To-Code Fixer
( 7.) Version Identification
( 8.) Magic Jump Finder
( 9.) Manually Enable & Disable Option Choice
( 10.) VM OEP Finder xII + [Intelli Version]
( 11.) 500 Bytes Extra Stack-Anti-Dump Checking
( 12.) Master Direct API Code Patching
( 13.) TLS Callback Killer
( 14.) Choice To Break Close On HWID & TRIAL Stop
( 15.) Turbo Patching Mode
( 16.) VM WARE Fixer by quosego
( 17.) EXE & DLL Support with LoadDll
****************************************************


This is an ollydbg Script..
i hope this 1 can help...

credits to:
LCF-AT

Statistics: Posted by dolhaps2000 — Fri Sep 28, 2012 3:38 pm

]]> 2012-09-25T02:10:16+00:00 2012-09-25T02:10:16+00:00 forum/viewtopic.php?t=1038&p=2501#p2501 <![CDATA[Tools • Re: ShellOp converter 0.1 - Shellcode Analysis assistant]]> However, some bugs still occurred. Have to work harder to make it better :P
Best regards

Statistics: Posted by Levis — Tue Sep 25, 2012 2:10 am

]]> 2012-09-24T14:58:47+00:00 2012-09-24T14:58:47+00:00 forum/viewtopic.php?t=1038&p=2483#p2483 <![CDATA[Tools • Re: ShellOp converter 0.1 - Shellcode Analysis assistant]]> Statistics: Posted by random — Mon Sep 24, 2012 2:58 pm

]]> 2012-09-24T13:49:34+00:00 2012-09-24T13:49:34+00:00 forum/viewtopic.php?t=1038&p=2480#p2480 <![CDATA[Tools • ShellOp converter 0.1 - Shellcode Analysis assistant]]> This's my small tool called "ShellOp Converter", which will convert
from shellcode to opcode and disasm these codes also. I created this when working around with some shellcodes embedded in some viruses.
Main features:

Convert Shellcode (Hex string) to opcode.
The opcode can be save to Hard disk.
Disasm the shellcode to MASM syntax(use BeaEngine)
Fix the shellcode entered automatically(only get the hexadecimal
character(s), others will be ignored)


A demo picture to show how it works:
Image
Very simple interface, we have 5 buttons there:
-The "Convert" button: Convert shell code to opcode and disasm these
codes.
-The "Clear" button: Clear the input box
-The "Save data to file" button: Save the converted opcode to a file
-The "Copy to Clipboard" button: Copy the disasm codes to clipboard
-The "About" button: about me and some other simple words.
Note: Still on beta-testing, so all bug reports are welcome.
Link download it here:

http://uppit.com/qvh53sy5qg3j/ShellOp-Converter-0.1-beta-rept.7z

Thank to: Beatrix ( BeaEngine's author), all REPT's members and REPT's Friends, and greetings to all reversers in this world
Best Regards
Levis/REPT

Statistics: Posted by Levis — Mon Sep 24, 2012 1:49 pm

]]> 2012-09-18T19:36:08+00:00 2012-09-18T19:36:08+00:00 forum/viewtopic.php?t=864&p=2305#p2305 <![CDATA[Tools • Re: EVLog]]>

Statistics: Posted by random — Tue Sep 18, 2012 7:36 pm

]]>