|
The Libnet Packet Construction Library
|
|
Hits: 5 |
|
Date added: 03/03/2006 |
|
Routines for the construction and handling of network packets. libnet provides a portable framework for low-level network packet writing and handling. . Libnet features portable packet creation interfaces at the IP layer and link layer, as well as a host of supplementary functionality. Still in it's infancy however, the library is evolving quite a bit. Additional functionality and stability are added with each release. . Using libnet, quick and simple packet assembly applications can be whipped up with little effort. With a bit more time, more complex programs can be written (Traceroute and ping were easily rewritten using libnet and libpcap). |
|
|
|
|
|
diStorm64 - AMD64 disassembler (Python 2.4)
|
|
Hits: 5 |
|
Date added: 05/31/2006 |
|
diStorm64 is an AMD64 disassembler, which is the first open source disassembler library for AMD64 out there, licensed under the BSD license.
diStorm is a binary stream disassembler. It's capable of disassembling 80x86 instructions in 64 bits (AMD64, x86-64) and both in 16 and 32 bits. In addition, it disassembles FPU, MMX, SSE, SSE2, SSE3 and 3DNow! (w/ extensions) and new x86-64 instruction sets. diStorm was written to decode quickly every instruction as accurately as possible. Robust decoding, while taking special care for valid or unused prefixes, is what makes this disassembler powerful, especially for research. Another benefit that might come in handy is that the module was written as multi-threaded, which means you could disassemble several streams or more simultaneously.
For rapidly use, diStorm is compiled for Python and is easily used in C as well. diStorm was originally written under Windows and ported later to Linux.
Note that there are currently no known bugs. |
|
|
|
|
|
Inventor v1.0
|
|
Hits: 5 |
|
Date added: 04/17/2006 |
|
Good Word generation program for making Dictionary list or anything. |
|
|
|
|
|
|
IDA Sync
|
|
Hits: 5 |
|
Date added: 07/06/2006 |
|
IDA Sync was written to allow multiple analysts to synchronize their reverse engineering efforts with IDA Pro in real time. Users connect to a central server through the ida_sync plugin. Once connected, all comments and name changes made with the registered hot keys are immediately transmitted to all other users working on the same project. The central server stores a copy of all changes as well, allowing new analysts to jump on the project and immediately receive up to date information.
Included in the source release is a C.. class providing IDA Pro plugin developers with an abstracted asynchronous IPC interface. |
|
|
|
|
|
IDACompare
|
|
Hits: 5 |
|
Date added: 09/14/2006 |
|
IDACompare is a plugin designed to compare and match up equivalent functions across two IDA databases. IDACompare was primarily designed for analyzing changes across malcode variants, it should also find good use when conducting patch analysis.
Once function matches have been made, names can be ported across disassemblies, or sequentially renamed in both.
Project also implements a signature scanner, letting you build your own listing of known functions. |
|
|
|
