Search results

Yeah, me too :)

More details here: https://www.hex-rays.com/contests/2019/index.shtml Regards,

Try this link: https://github.com/vdisasm/ScyllaHideForIda7

Virtuailor is an IDAPython tool that reconstructs vtables for C++ code written for intel architecture and both 32bit and 64bit code. The tool constructed from 2 parts, static and dynamic. The first is the static part, contains the following capabilities: Detects indirect calls. Hooks the value...

Author: Lasha Khasaia @_qaz_qaz Feature: If a process allocates a dynamic memory using VirtualAlloc, HeapAlloc, new, etc. and continues execution from that address, most of times, the memory address will be different for each different execution, it means that if we comment, rename variables...

You can use both python 32-bit (for IDA 6.8) and python 64-bit (for IDA 7.0). Create a .bat file to set env for python x64 like this: @ECHO off set PYTHONHOME=C:\Python27x64 set PYTHON=%PYTHONHOME%\python.exe set PYTHONPATH=%PYTHONHOME%\Lib\site-packages set PYTHONSCRIPT=%PYTHONHOME%\Scripts...

Yup, it always great idea!! We can view offline with a good quality pictures and also a must have plug-in for IDA!! Regards,

New update: xAnalyzer 2.5.3: Fix for newer x64dbg versions [+] Detection of function names in newer versions of x64dbg fixed [+] Version number updated

@a1ext: Can you add the link to Part 3 at the end of Part 2 (https://research.checkpoint.com/installing-labeless/), cause i must visit forum to read your post and get the link :D Update: Wow i found it ("So, let’s proceed to the next lesson <--"), but i think make it "bold" for other :). And...

Nice series, thanks so much! Regards,

New build:version 1.1.2.83 [Olly1/2] remote memory allocation for scripting added `ll.memory.RemoteAllocRWE`/`ll.memory.RemoteFree` Link: https://ci.appveyor.com/project/a1ext/labeless/build/artifacts Thanks @a1ext!!

First of all, thanks @a1ext for the new release!!! Labeless v_1_1_2_48 Download here: https://github.com/a1ext/labeless/releases/download/v_1_1_2_48/labeless_release_full_1.1.2.48.7z Regards,

New release: xAnalyzer 2.5.2: Changes to module analysis - Used current selected disasm line for module analysis instead of cip - Modified some typing in plugin entries - Some code refactoring - Modified command "xanal/xanalremove exe" to "xanal/xanalremove module" - Closes #31

What's IDAFuzzy? IDAFuzzy is fuzzy searching tool for IDA Pro. This tool helps you to find command/function/struct and so on. This tool is usefull when You don't remember all shortcut. You don't remember all function/struct name exactly. This tool is inspired by Mac's Spotlight and Intellij's...

New release : xAnalyzer 2.5.0 -Removed [EBP+/-] instructions as possible function caller arguments -Removed prefix "0x" of all function arguments values since hexadecimal is inferred -Fixed arguments where pointer variables wouldn't show correctly as pointers but as base data type instead -Added...

@a1ext: Any news update for IDA 7.0?

SearchGoogle - IDAPython plugin adding "Search Google for..." to right click context menu. > tested w/ IDA 7 > useful for unique strings, magic numbers, constants... Download here: https://github.com/intezer/scripts/blob/master/search_google.py Regards,

IDAtropy is a plugin for Hex-Ray's IDA Pro designed to generate charts of entropy and histograms. Screen shot: Download here: https://github.com/danigargu/IDAtropy/ Regards,

Oh .. brother, i've just copied C:\Windows\System32\msvcp140d.dll from my Win10 VM to my Win7 and reload IDA .. now it's working lolz :) I will test further and report if has bug Regards,

Tks for your info .. Here is my result, on Win7 SP1 :)