MyNav: An Open Source plugin for IDA Pro for code coverage
MyNav is a plugin for IDA Pro to help reverse engineers in the most typical task like discovering what functions are responsible of some specifical feature, finding code paths between "interesting" functions and data entry points.
Features
Blog Posts
Videos
Features
- Differential debugging: Record traces of debugged processes and save them for later analysis and for discovering the specific code responsible of some feature.
- Function's browser: Navigate through functions looking relationships and discovering code paths among them.
- Code path searching: Automatic code path searching facilities between 2 specific functions or between data entry points (points where we can input data to the application) and target points (functions where you want to reach code execution as for example vulnerable functions).
Blog Posts
Videos
Pyew: A Python tool like radare or *iew for malware analysis
Pyew is a (command line) python tool like radare and *iew oriented, mainly, to analyze malware. It does have support for hexadecimal viewing, disassembly (Intel 16, 32 and 64 bits), PE and ELF file formats (it does code analysis the right way), following direct call/jmp instructions, OLE2 format, PDF format (limited) and more. It also supports plugins to add more features to the tool.
See some usage examples or example batch scripts.
Pyew is very similar in some aspects to the following tools:
Blog Posts
See some usage examples or example batch scripts.
Pyew is very similar in some aspects to the following tools:
Blog Posts
DeepToad: A tool to clusterize similar files using fuzzing hashing
Deeptoad is a (python) library and a tool to clusterize similar files using fuzzy hashing techniques. This project is inspired by the well known tool ssdeep.
Blog Posts
Blog Posts
TNSIDS: An IDS for the Oracle TNS protocol
Inguma: A free penetration testing toolkit
Inguma is a penetration testing toolkit entirely written in python. The framework includes modules to discover hosts, gather information about, fuzz targets, brute force user names and passwords and, of course, exploits for many products.