REALBasic Professional v2008 r3.1 September 19, 2008
Posted by reversengineering in OTHER, TOOLS.6 comments
REALbasic is a rapid application development environment that enables developers to create high-quality, native software for Windows, Mac and Linux.
REALbasic includes:
- an integrated environment designed for developer productivity
- a modern, object oriented programming language
- a cross-platform object framework
- a cross compiler that produces native executables
REALbasic is used to create all types of applications, including database clients, commercial software, custom business solutions, educational products and more. In fact, REALbasic itself is written in REALbasic.
REALBasic.Professional.v2008r3.1.Incl.Keygen.5000th.RELEASE-BRD is out now!!! ~89mg
http://www.realsoftware.com/download/
OllyDBG v1.10 plugin – StrongOD v0.18 [2008.09.18] September 19, 2008
Posted by reversengineering in DEBUGGER, OLLY'S PLUGINS, TOOLS.2 comments
[2008.09.18 v0.18]
1, to repair the Ctrl G calculation rva, offset when a small BUG
2, when the program is not running the state, Detach before running program
3, restoration of the original data OD zone copy BUG
4, repair od after the CPU running very high occupancy rate BUG
5, you can set it to skip some of the exception handling
[2008.09.02 v0.17]
1, to skip some of the improper handling of the abnormal OD
2, correctly handle the instructions int 2d
[2008.08.31 v0.16]
1, joined the drive to protect the process, the hidden window, over most of the anti-debugging
2, driver support for the custom equipment 000 (ollydbg.ini of DeviceName, equipment were not more than 8 characters)
ollydbg.ini of [StrongOD], you can set up their own
HideWindow = 1 to hide the window
HideProcess = 1 to hide the process
ProtectProcess = 1 protection process
DriverKey =- 82693034 and the key driver of communication
DriverName = fengyue0 who drives (not more than 8 characters)
3, OD will be the creation of the parent process into the process explorer.exe (copied from shoooo code)
The increase in the version of the driver, if a blue screen, set up minidump spread to the Forum, thank you
OllyDbg original use as much as possible, and other generally do not need the anti-anti plugin in conjunction with plug-in (including phant0m)
Download
http://www.unpack.cn/viewthread.php?tid=28854
PECompact v2.94.1 released September 19, 2008
Posted by reversengineering in NEWS, PACKER, TOOLS.2 comments
Fix.Core: Fixed handling of some non-Microsoft linkers debug directories. This could have caused a decrease in compression ratio or an inability to locate post-compressed debug information, depending on if /StripDebug was set to Yes or No, respectively.
Fix.Core: Improved compression ratio when debug directories are present and preserved. In previous versions, unrelocated (old) copies of the debug data would get left in the compressed data stream.
Fix.Core: Improved handling of very large debug directories.
Change.Core: If overlay/extra-data is empty (no non-NULL data) we skip storage of it after compression. This is useful for the new code changes that can strip debug information from the overlay/extra-data area.
Fix.Console: Fixed help mode capital ‘A’ not being accepted correctly to show advanced help menu.
Fix.Console: Fixed ‘ ompressed’ output.
Fix.TestCodec: Various updates to get it up to speed with the latest CODEC specifications and more.
Change.Settings: Made /StripDebug:Yes (/SD:Y) the default. Debug information will get stripped unless you specify /SD:N.
Addition.GUI: Now remembers last browsed folder when adding files to the listview in older NT OSes (XP, 2k).
Change.GUI: Minor cosmetic adjustments.
Addition.Package: Included new cipher1 codec in all packages.
Addition.Package: Included new cipher2 codec in retail build.
Installer: Update to NSIS 2.39.
.1: Addition.GUI: Added ability to remember window position and size.
Download (trial): http://www.bitsum.com/files/pec2setup.zip
Download (student): http://www.bitsum.com/files/pec2student.zip
java decompiler JD 0.2.5 September 19, 2008
Posted by reversengineering in Decompilers, TOOLS.2 comments
Introduction
The aim of “Java Decompiler” project is to develop tools to decompile and analyze Java 5, and upper, “.class” files.
Some facts:
The final release of JSR 176, defining the major features of the J2SE 5.0, has been published the september 30, 2004.
The lastest Java version supported by JAD, the famous Java decompiler written by Mr. Pavel Kouznetsov, is 1.3.
Most of Java decompilers downloadable today from Internet, such as “DJ Java Decompiler” or “Cavaj Java Decompiler”, are powered by JAD : they can not display Java 5 sources.
JD-Core is a freeware library that reconstructs Java source code from one or more “.class” files. JD-Core may be used to recover lost source code and explore the source of Java runtime libraries. New features of Java 5, such as annotations, generics or type “enum”, are supported. JD-GUI includes JD-Core library.
JD-GUI is a standalone graphical utility that displays Java source codes of “.class” files. You can browse the reconstructed source code with the JD-GUI for instant access to methods and fields.
JD-Core and JD-GUI are free for non-commercial use. This means that JD-Core and JD-GUI shall not be included or embedded into commercial software products. Nevertheless, JD-Core and JD-GUI may be freely used for personal needs in a commercial or non-commercial environments.
[img]http://java.decompiler.free.fr/jd-gui/screenshots/screenshot1.png[/img]
Main features
* JD-Core and JD-GUI are written in C++. This allows an extremely fast decompilation and a display.
* JD-Core does not require the Java runtime environment for its functioning, therefore no special setup is required.
* JD-Core works with most current compilers including the following:
o jdk1.1.8
o jdk1.3.1
o jdk1.4.2
o jdk1.5.0
o jdk1.6.0
o jikes-1.22
o harmony-jdk-r533500
o Eclipse Java Compiler v_677_R32x, 3.2.1 release
o jrockit90_150_06
* JD-Core supports the following new features of Java 5:
o Annotations
o Generics
o Type “enum”
* JD-GUI supports Drag and Drop.
* JD-GUI supports JAR files.
* JD-GUI displays color coded Java source code.
* JD-GUI allows you to browse the “class” files hierarchy.
* JD-GUI displays “log” files, and allow you to decompile “class” files appearing in Java stack traces.
* JD-Core and JD-GUI use the excellent cross-platform wxWidgets toolkit.[/quote]
What’s New
09112008
JD-GUI 0.2.5 is ready. It includes minor changes but some important improvments have been added to the core of decompiler. Test it!
08032008
JD-GUI 0.2.4 is out ! In addition to bug fixes, it includes a new feature to inform you of the availability of new versions.
Download:
for windows
http://java.decompiler.free.fr/jd-gui/downloads/jd-gui-0.2.5.windows.zip
for linux i686
http://java.decompiler.free.fr/jd-gui/downloads/jd-gui-0.2.5.linux.i686.tar.gz
for osx i686
http://java.decompiler.free.fr/jd-gui/downloads/jd-gui-0.2.5.osx.i686.dmg
dUP v2.18 Beta 13 September 19, 2008
Posted by reversengineering in OTHER, TOOLS.2 comments
dUP v2.18 Beta 13
19-Sep-2008
- strings for patcher.exe can be modifed now inside a skin
Quote:http://diablo2oo2.di.funpic.de/stuff/dup2.beta.rar
ArmaG3ddon V1.5.1 September 19, 2008
Posted by reversengineering in TOOLS, UNPACKERS.5 comments
ArmaG3ddon V1.5.1
the installer has been removed, it was asking for .net framework, even if the program is pure c++.
Anyone that used the *.msi package should uninstall the program using Control Panel >> remove program, Then they can use the new package (which doesn’t use the installer).
http://arteam.accessroot.com/releases.html
http://letitbit.net/download/7f1c2e751233/ArmaG3ddon-v151-by-CondZero.rar.html
RDG Pack Lite Edition v0.2 by RDGMax September 18, 2008
Posted by reversengineering in PACKER, TOOLS.3 comments
RDG Pack Lite Edition v0.2 by RDGMax
http://www.rdgsoft.8k.com/
Abrir Archivo = Open File
Encriptar = Crypt
new tutorial by Joker Italy September 18, 2008
Posted by reversengineering in MUPS, Scripts, other protectors and packers.3 comments
Unpack SDProtector 1.16 + SCRIPT
Script SDProtector 1.16 IAT Redirect
http://letitbit.net/download/f45a8a827515/Script-SDProtector-1.16-IAT—Redirect.rar.html
http://letitbit.net/download/b3f419555648/Unpack-SDProtect-1.16—Script-By-Joker-Italy.rar.html
dUP v2.18 Beta 12 September 18, 2008
Posted by reversengineering in OTHER, TOOLS.Tags: patcher
add a comment
2008-09-18
Changelog
The Developer’s Guide to Debugging September 18, 2008
Posted by reversengineering in E-BOOK.add a comment
The Developer’s Guide to Debugging
244 pages | Springer; 1 edition (August 2008) | ISBN-10: 1402055390 | PDF | 1.7 Mb
That’s true, unfortunately. Even the good old “hello, world” program, known to virtually every C and C++ programmer in the world, can be considered to be buggy. Developing software means having to deal with defects; old ones, new ones, ones you created yourself, and those that others brought to life. Software developers debug programs for a living.
Hence, good debugging skills are a must-have. That said, it is regrettable that debugging is hardly taught in engineering schools. That’s how the idea for this book was born.
The Developer’s Guide to Debugging is a book for both professional software developers seeking to broaden their skills and students that want to learn the tricks of the trade from the ground up. With small examples and exercises it is well suited to accompany a CS course or lecture. At the same time it can be used as a reference guide to address problems as the need arises.
This book goes beyond the level of simple source code debugging scenarios. In addition, it covers the most frequent real-world problems from the areas of program linking, memory access, parallel processing and performance analysis. The picture is completed by chapters covering static checkers and techniques to write code that leans well towards debugging.
While the focus lies on C and C++, the workhorses of the software industry, one can apply many techniques described in The Developer’s Guide to Debugging to programs written in other languages.
.NET Reflector™ Latest version: 5.1.3 September 18, 2008
Posted by reversengineering in .NET, TOOLS.add a comment
Red Gate has recently acquired .NET Reflector. We will continue to maintain a free version for the benefit of the community. For more information on the deal, please see the interview on Simple-Talk.
Over the next few months we will be exploring ways we can make Reflector even more useful to .NET Developers. We always welcome feedback from the community so, if you have any ideas, please post them on the Reflector forum.
http://www.red-gate.com/products/reflector/
Debuggers page updated September 18, 2008
Posted by reversengineering in NEWS.add a comment
IDA Pro Advanced v5.1.0.899
DataRescue IDA Pro Advanced v5.1.0.899 + SDK + FiX
IDA PRO 5.1 SDK
Datarescue ida pro advanced v5.1 windows patch
IDA Pro v5.20 Advanced Full MegaPack
IDA Pro 5.2 addons
DataRescue IDA Pro Advanced v5.2 SDK
added and uploaded
BY :CrackLab,AT4RE,YAG,REM
http://reversengineering.wordpress.com/debuggers/
RebelReportEditor (C#/Source) September 18, 2008
Posted by reversengineering in OTHER, TOOLS.add a comment
•Add/Edit/Remove strings in the #US table of a Rebel report file.
Reason:
I made this because I wanted a simple way to add strings to a .net file.
Notes:
This so badly needs to be rewritten 
. I just wanted to get it done so I could use it. I will most likely rewrite it soon(neater classes/better gui). You are free to edit it to your needs though.
If you have suggestions (like a better gui) let me know.
What I most likely plan to do with the gui is take the mdi form and have it so when you open/drag drop a file it opens a form with all the editor(s) in tabs.
AMDUMPV62 V2.2 September 18, 2008
Posted by reversengineering in OTHER, TOOLS.add a comment
i told you before this summer with ARTeam is so cool!
Author: CondZero
Dumper for ActiveMark 6.2 -FULL Sources and TWO Tutorials included-
Size: 794.96 KB
http://arteam.accessroot.com/releases.html
or
http://letitbit.net/download/b1eb5b552499/AMDUMPV62-v22-by-CondZero.rar.html
ExeFog v.1.1 ImpREc Plugin September 17, 2008
Posted by reversengineering in OTHER, TOOLS.add a comment
by :donny
here is my import fixing plugin for ImpRec…
my first plugin ever
http://letitbit.net/download/cf032d464939/ExeFog-v.1.1-ImpREc-Plugin.rar.html
Immunity Debugger v1.73 September 17, 2008
Posted by reversengineering in DEBUGGER, Immunity Debugger, TOOLS.3 comments
from:http://debugger.immunityinc.com
We have put out the 1.73 release which is a maintenance release that has a few more bugfixes as well as a DLL injection function in the debugger API.
The list of changes are as follows:
- Immunity Debugger API
- Added inject_dll() method to load a DLL into the debuggee
- Bug Fixes
- Fixed pathing issue when updater.exe spawns debugger
- Fixed MemoryPage.getOwner() to return only the module name
- Fixed hang when opening Immlib-> Lib References menu item
You can upgrade your current Immunity Debugger by going to Help/Update
or directly downloading the new installer from
http://www.immunityinc.com/products-immdbg.shtml
Thanks for using Immunity Debugger, and all your patience while we resolved these last few issues.
Sincerely
Team Immunity
http://www.immunityinc.com
Cheats Maximal 8.6 September 17, 2008
Posted by reversengineering in OTHER, TOOLS.1 comment so far
Cheats Maximal 8.6
CheMax is one of the best offline cheat-base for PC games. The base is based on ChEaTs software and it is fully rewritten and updated. There are no hints or solutions in its base, only pure cheat codes, level codes and easter eggs. Current version of CheMax contains cheats for more than 5434 games! This program is freeware, so you can use it without paying anything!
http://letitbit.net/download/7239a0229211/chemax90.exe.html
Resources Extract v1.03 September 17, 2008
Posted by reversengineering in OTHER, TOOLS.add a comment
Resources Extract v1.03
ResourcesExtract is a small utility that scans dll/ocx/exe files and extract
all resources (bitmaps, icons, cursors, AVI movies, HTML files, and more…) stored
in them into the folder that you specify.
You can use ResourcesExtract in user interface mode, or alternatively, you can run
ResourcesExtract in command-line mode without displaying any user interface.
http://letitbit.net/download/73d9e7254500/resourcesextract.zip.html
Reverse Engineering: Smashing the Signature September 17, 2008
Posted by reversengineering in RCE.add a comment
Title: Reverse Engineering: Smashing the Signature
Date:
August 19th 2008
Author:
Nicolaou George
able of Contents
Introduction ……………………….3
Tools ………………3
Example Software ……………….3
Program Analysis ……………………..3
Source Code ……………3
User Interface ………………..6
Assembled Code………………..6
Binary Code Encryption ……………..8
Final Words ………………….19
http://letitbit.net/download/e56be0667920/217.pdf.html
SEH Overwrites Simplified v1.01th September 17, 2008
Posted by reversengineering in RCE.add a comment
Title: SEH Overwrites Simplified v1.01th
Date: October 29 2007
Author: Aelphaeis Mangarae
Table of Contents
Introduction
What Is The SEH Handler?
Pointer to Next SEH?
Microsoft Stack Abuse Protection Explained
Searching for Appropriate Addresses
Theory of SEH Overwrites & Exploitation
Theory of Windows XP SP2 & 2003 SP1 Exploitation
Windows XP SP2 & 2003 SP1 Exploitation
PLEASE READ
About The Author
Greetz To
http://letitbit.net/download/78e89e943152/187.pdf.html
Reverse Engineering:Anti-Cracking Techniques September 17, 2008
Posted by reversengineering in RCE.add a comment
Author:
Charalambous Glafkos
Date:
April 12th 2008
Table of Contents
Introduction…………………………….3
TODO………………….3
Reverse Engineering Tools………………………3
Reverse Engineering Approaches …………………..4
Example Software…………………….4
Program Analysis……………………………..4
Approach No1 (String References)………………………5
Suggestions (Approach No1)………………….7
Approach No2 (Breakpoint on windows API)……………………….8
Suggestions (Approach No2)……………9
Approach No3 (Stack Tracing)……………….10
Suggestions (Approach No3)…………………………….12
Binary Code Patching: …………………………….13
Approach No1 (Branch Patching)……………………….20
Approach No2 (Replace functions) ……………………..21
Serial Generating………………………..22
Code Reconstructing………………………22
Code Ripping………………………….23
Other …………………………..24
http://letitbit.net/download/7fa5f5676467/208.pdf.html
MS API function pointers hijacking September 17, 2008
Posted by reversengineering in RCE.add a comment
by: shinnai
In this paper I’ll demonstrate how to use some API functions pointers to execute
arbitrary code on a user’s pc. This is not a bug, but I consider it as a simply
security flaw.
http://letitbit.net/download/a7fe09828748/185.pdf.html
Playing around with (old?)SEH September 17, 2008
Posted by reversengineering in RCE.2 comments
bY suN8Hclf aka crimsoN_Loyd9
08.06.2008
http://letitbit.net/download/ed2339869626/Playing-around-with–old–SEH.txt.html
edited
– and –!!
check it again
IDA and obfuscated code-Ilfak Guilfanov September 17, 2008
Posted by reversengineering in OTHER, TOOLS.add a comment
Translation: Chinese » English
from:pediy.com
Read the small, seemingly very good. Vm inside some of the analysis.
http://letitbit.net/download/ad8f99418824/caro-obfuscation.rar.html
ActiveMARK Decrypter 1.0 September 17, 2008
Posted by reversengineering in OTHER, TOOLS.add a comment
nice summer with ARTeam 
ActiveMARK Decrypter 1.0 – ARTeam (Bilingual English/Spanish)
ActiveMark programs are like compressed and crypted archives, containing different files, like zip. This tool help you extracting and decrypting them
Released Summer/2008
Features:
- Provides information about ActiveMARK protection on any file.
- Identifies the protection version.
- Unpacks & decrypts the content of any ActiveMARK protected file.
- Allows an internal analysis of the content of every compressed file within the encrypted container.
- It works statically (none executable is launched).
- Detects automatically the language in your system.
How to use:
Select first any executable. Then you can decrypt any external file associated to it, using the Uncompress key.
Note: Any ActiveMARK encrypted file is similar to a .zip or .rar file, containing several files in its inside.
Coded & designed by Nacho_dj/ARTeam
http://arteam.accessroot.com/releases.html
or
http://letitbit.net/download/895147251081/ActiveMARKDecrypter-10-by-Nacho-dj.rar.html
Enigma Protector 1.53 Build 2008.09.15 September 17, 2008
Posted by reversengineering in NEWS, PROTECTOR, TOOLS.1 comment so far
What’s new: The Enigma Protector 1.53 Build 15 September 2008
Added possibility to embed any types of files into protected file without writing these files to the disk
Added about 17 anti-debugger plugins
Added possibility to embed own plugins into protected files
Added checkup of Windows user’s privileges
Added hardware lock – “Hard Disk Serial Number”
Added support JPEG and PNG files for Splash Screen
Added “Close on mouse click” in Splash Screen
Added “Stop execution when splash screen is showing” in Splash Screen
Added checkup of Virtualization tools – VirtualBox
Added examples of using of EP_ProtectedStringByID and EP_ProtectedStringByKey functions, see Examples\ProtectedStrings folder
Added API EP_ProtectedStringByID and EP_ProtectedStringByKey that return protected strings
Added Protected Strings feature to protect user defined strigns
Added examples of EP_MiscGetWatermark, see Examples\Watermarks folder
Added Enigma API EP_MiscGetWatermark that returns watermarks from the file
Bug fixed when protecting overlay files with “File size preservation” feature enabled
Bug fixed in Checkup – Windows version
Bug fixed in some dlls that are using DecryptOnExecute marker
Bug fixed in some applications when reading relocations directory
Bug fixed when using DecryptOnExecute marker in dlls
Bug fixed in some applications that are protected with Advanced force import protection + DecryptOnExecute marker
Bug fixed with loading older created project files
Bug fixed when executing older protected version after new one has been executed
http://www.enigmaprotector.com/assets/files/enigma_1.53_20080915_en_demo.exe
ExeInfo PE ver. 0.0.1.9 C September 17, 2008
Posted by reversengineering in DETECTOR, TOOLS.add a comment
13.09.2008
added new skin, tools/ antipacker / sign counter / new signatures / bug fixed
http://letitbit.net/download/1355bd893695/exeinfope1.9c.zip.html
2 new tool from ARTeam September 17, 2008
Posted by reversengineering in OTHER, TOOLS, UNPACKERS.add a comment
xFile 1.4.0.36 Released!
The File Update Module increases the size of a file to the specified value. Just enter the “Desired Size” in bytes and you’re all set. Works with all file types, with compressed/packed files also, but files with integrity check are not supported. Also, backup option has been implemented.
The Hide Caption Tool is ideal for hiding the caption of any application. Just build a list with the full/partial captions you want to hide and hit Enable. Changes apply in realtime and checks are made often to hide all instances of the application.
The Junk Cleanup Module is useful for deleting Olly’s UDD and BAK files. Also, there is an option to backup files before deletion (ZIP).
NEW! The Resource Fix Module (based on DreamTheatre’s engine) comes in handy after unpacking. Just rebuild the resources, so that you can edit them without crashing the program. You can also dump the resources to file.
Additional features:
* Drag and Drop support
* file CRC Calculator
* auto-refresh of UDD folder
* auto-save settings
* Hide Caption works faster (Partial Captions are now supported)
* fixed minor UI bugs
ArmaG3ddon V1.5
Current Release: v1.5 September 2008
+ minor updates to improve stability
+ fix problem with hardware fingerprints
+ update Arteam Import Reconstructor v1.2.1 (Nacho_dj)
Includes:
+ Sorted imports
+ Fixed bug for UPX targets in the new Armadillo 6 code
Special Note: This tool has been built using Visual Studio 2005 and is now installed via an *.msi file. Nothing too much has changed other than the use of an installer and where it wants to put the new app.
You can change the default installation folder, also, you must use Control panel / add / delete programs to uninstall the program.
As a result of this change, the resultant d/l is larger due to the installer program.
get it here: http://arteam.accessroot.com/releases.html
or
http://letitbit.net/download/c42ccc366838/xFile-1-4-0-36-by-anorganix.rar.html
http://letitbit.net/download/14c469330314/Armag3ddon-v15-by-CondZero.rar.html
[request links] September 16, 2008
Posted by reversengineering in E-BOOK, OTHER, PACKER, Request, TOOLS, UNPACKERS.add a comment
http://letitbit.net/download/943775516201/Bitsum.PECompact.v2.93b3-ArCADE.rar.html
http://letitbit.net/download/d01d5f873881/VBConversions.VB.Net.To.C.Sharp.Converter.v2.21.Incl.Keygen-Lz0.rar.html
http://letitbit.net/download/b056cc127114/unpacker-execryptor-2xx-beta-2.rar.html
http://letitbit.net/download/694380806550/The-Undocumented-Functions-For-Microsoft-Windows-NT2000.rar.html
new tutorial by Joker Italy September 16, 2008
Posted by reversengineering in MUPS, other protectors and packers.add a comment
- New tut September 2008
Unpack IDApplication Protector2.5 + Script
http://rapidshare.com/files/145729373/Unpack_IDApplication_Protector_2.5_By_Joker_Italy.rar.html
http://www.sendspace.com/file/jzn278
http://letitbit.net/download/4474b1543685/Unpack-IDApplication-Protector-2.5-By-Joker-Italy.rar.html
