ollydbg 2 Pre-alpha 4 March 31, 2008
Posted by reversengineering in NEWS.add a comment
Pre-alpha 4: name lists, search for text strings, floating-point constants and intermodular calls, run trace conditions, syntax highlighting (but default colours are not yet set), pause on thread, names of the arguments on the stack etc. The analysis of large modules is much faster now.
winhex 14.8 sr 4 March 31, 2008
Posted by reversengineering in HEX EDITOR, TOOLS.add a comment
PEunLOCK PUBLiC v0.6 March 31, 2008
Posted by reversengineering in TOOLS, UNPACKERS.add a comment
+ support VB programs
v0.3
+ suppress unidentified stolen code restoration
+ make all sections writable
+ support for victims whose apis are not redirected
+ fix exception for newer versions of PELock
PEunLOCK PUBLiC v0.1 by cyclotron
- Support unpacking PELock v1.06
- Based on ap0x’s unpack engine v1.4
- EXCLUSIVE support for FULLY protected victim under WinXP SP2
Protected: EXECryptor V2.4.1 CracKed + SDK + Example March 24, 2008
Posted by reversengineering in PROTECTOR.Enter your password to view comments.
Syser Debugger v1.96 March 24, 2008
Posted by reversengineering in NEWS.add a comment
1. 586/100Hmz or higher processors (586/300Hmz+ recommended)
2. OS: Windows 2000, Windows XP, Windows 2003 or later.
3. At least 256MB RAM
4. At least 5MB free disk space
5. VGA Video Card(Resolution: 640*480, at least 16bit (65536) color)
6. Mouse or compatible pointing devices (PS2 Mouse, USB Mouse, TouchPad, TrackPoint).
Procedure Features:
1. Supports color disassembly.
2. Source code debugging supports syntax coloring.
3. Source code debugging supports collapsing mapping between source code and assembly instructions.
4. Supports dynamic loading and unloading.
5. entire keyboards operations support. (If is doing not have mouse equipment situation all operations all to be allowed to use keyboard to operate)
6. Full mouse action support (if no keyboard is available, all operations can be performed through mouse commands).
7. Commands are Softice-compatible
8. Multi-language support, fully implemented unicode at low level.
9. Supports plug-ins.
10. Supports multi-CPU and Intel Hyper-Threaded processors.
11. Supports startup scripts (similar to batch files).
12. Supports clipboard function, able to copy data from Ring 3 debugger to Ring 0 debugger.
13. Fully supports PDB debugging symbol files.
14. Automatically load drivers to debug.
15. Supports comments adding when debugging.
16. Supports bookmark function.
17. Address navigation is supported in disassembly windows and users can browse different functions quickly by double-clicking.
18. Source code debugging supports quick view of variables and users can view variable types and values by moving cursor over variable names.
19. Syser is the perfect combination of IDA and Softice functions.
20. Supports address cross-reference lists.
21. Supports data reference lists.
22. Supports the advanced processing modes of pointing devices, such as TouchPad, TrackPoint.
23. Supports multiple data windows.
24. Supports multiple code windows to facilitate the browsing of assembly code.
25. Supports run trace mode for ollydbg.
26. The automatic generation and automatic loading of debugging symbol files makes the complex procedure of source code debugging unnecessary. If you are developing and debugging on the same machine and the storage directory of the source code keeps unchanged, you could enter our debugger for source code debugging and assembly debugging simply by right-clicking the executable file you compiled and selecting Debug with Syser from the popup menu.
Home: http://www.sysersoft.com
TrialReset 3.3 (Public) Final March 14, 2008
Posted by reversengineering in OTHER.11 comments
Supported Protector:
ACProtect
1.x/2.x
2.0
ActiveMark
5.x/6.x
6
Armadillo
1.x/2.x/3.x/4.x
4.54
ASProtect
0.x/1.x/2.x
1.35/2.3
DBPE
1.x/2.x
2.33
EncryptPE
1.x/2.x
2.2006.10.1
Enigma
1.x
1.16
ExeCryptor
2.x
2.3.9
ExeShield
2.x/3.x
3.8.5.2
ICE License
2.x
2.5.0.2
NoCopy
3.x
3.3
Obsidium
1.x
1.3.0.4
OneWay
5.x
5.5
Orien
2.x
2.12
PCGuard
4.x/5.x
5.01
ProtectionPlus
4.x
4.2.1.12
ProtectShareware
1.x
1.1
SafeSerial
2.x
2.3.9
SDProtector
1.x
1.16
Sheriff
2.x
2.8.70
SGLicense
3.x
3.00
ShareGuard
2.x/3.x
3.2
SoftLocx
5.x/6.x/7.x
7.0
SoftSentry
3.x
3.00
SoftWrap
5.x/6.x
6.1.1
STProtector
1.x
1.5
SVKP
1.x
1.44
Thinstall
2.x
2.719
VBOLock
4.x
4.4.2.12
VBox
3.x/4.x
4.6.2
VisualProtect
2.x/3.x
3.5.4
Xheo Licensing
2.x
2.1.5000.28
XProtector
1.x
1.08
ZipWorx
3.x
3.0.0.1
System Requirements
Trial-Reset requires a PC running Windows 95/98/ME/NT4/2000/XP/2003/Vista with minimum of 16MB memory and about 0.2 MB of free hard disk space.
To use this program the VB6 run time and Windows Common Controls ActiveX 6 (MSCOMCTL.OCX) must be installed on your computer.
What’s new TrialReset 3.3 (Public):
-Added support for License Protector 2.x
-Updated support for Enigma Protector 1.4x
-Updated support for ActiveMark 6.x
-Minor bugs fixes
LINK:http://rapidshare.com/files/99591678/T.R3.3.rar
unlocker 1.8.6 March 10, 2008
Posted by reversengineering in OTHER.add a comment
- Fixed bug: Non DLL handles are now listed properly on Vista.
- Fixed bug: List files are compatible with Total Commander again. This bug appeared in version 1.7.7. Thanks to Icfu for spotting it.
- Improved behavior: The executable includes a manifest for better Vista compatibility.
- Promotional feature: Added fully optional shortcuts to eBay during the installation. Simply untick “eBay shortcuts” in the choose components page during install if you do not wish to have those.
new ollydbg mod. March 10, 2008
Posted by reversengineering in DEBUGGER.1 comment so far
3 new good tools March 10, 2008
Posted by reversengineering in DETECTOR, OTHER, TOOLS.add a comment
[Current Version]
Version: 2.17
[Features]
-multiple file patcher
-create Offset and Search&Replace patch/loader
-compare files (RawOffset and VirtualAddress) with different filesize
-registry patcher, also for loaders
-attach files to patcher
-get filepaths from registry
-usage of CRC32 and filesize checks
-patching packed files
-compress patcher with your favorite packer
-saving projects
-use custom skin in your patcher
-add music (Tracker Modules: xm,mod,it,s3m,mtm,umx,v2m,ahx) to patcher
-and many more…
Sorry but this tool is not designed for newbies, you should be familiar a bit with manual unpacking first (some tutorials are easy to find on internet).
Features:
- Imports
- An original tree view
- 2 different methods to find original imports (by IAT and/or API calls)
- A *FULL* complete rebuilder (including a new fresh IAT)
- Loader
- An analyzer and ripper of redirected API code
- An injected loader code to support mix of imports + ripped code in a thunk
- A heuristic relocator
- Tracers
- 3 default tracers (disasm, hook & ring3) to find APIs in redirected code
- A plugin interface to develop your own tracers
- Misc
- Support ALL 32/64bits Windows (9x, ME, NT, 2k, XP and Vista32/64)
- An export renormalizer for Win9x/ME (ala Icedump)
- A built-in coloured disasm/hex-viewer to analyze the redirected code
- A built-in dumper
- Support almost all known antidump tricks
