Software for reversing

Man

Man

Professional
Messages
3,077
Reaction score
614
Points
113
Debuggers and disassemblers:

Ollydbg
with plugins
Click to expand...
plugins can be found here:

OpenRCE

OpenRCE: The Open Reverse Code Engineering Community
www.openrce.org

Turbo Debugger
Quite a good debugger from Borland.
Click to expand...

TRW2000
This debugger allows you to examine DOS .com, DOS .exe, DOS applications running in protected mode, 16-bit NE, 32-bit PE programs. It is possible to set several control points. TRW uses many new ideas for tracing programs under Windows 95. After SoftICE, TRW is the best debugger for Windows, but unfortunately not for XP/NT/2k.
Click to expand...

IDA Pro
IDA Pro is an interactive disassembler and debugger at the same time. It allows you to convert binary program code into assembler text, which can be used to analyze the program's operation.
Click to expand...

BORG
According to the words, it is a pretty good disassembler, the source code in C is included. If you follow the link, you can find everything you need for the final 2nd branch.
Click to expand...

PE tuzly:

PEiD
The program allows you to define hundreds of packers, compressors, joiners and hanging protections for PE files (defines more than 450 signatures for PE files). For every reverse engineer and cracker
Click to expand...

Process Explorer
You can monitor running processes on your computer using
the TaskManager task manager built into the system. However, it is not possible to see
all processes with its help. The Process Explorer program copes with this task much better and
will allow you to monitor running processes more effectively. Each such
process can be terminated or a certain priority can be set for it using this utility
. The program has a built-in search engine that allows you to search for
a specific process using the loaded *.dll library. The program does not require installation and
is small in size. Developer: http://www.sysinternals.com Mark Russinovich
Click to expand...

Process Monitor
An advanced monitoring utility for Windows that
allows you to display active registry entries, processes in real time
. It combines two utilities from Sysinternals, Filemon and Regmon, and
adds a wide range of improvements, including reliable process information
and much more.
Click to expand...

Sniffers and analyzers:

tcpdump for Windows
A command-line network sniffer. Allows you to track incoming and outgoing packets. Brief information is displayed about each packet - who sent the packet, to whom, the protocol, some parameters of the packet.
Click to expand...

Wireshark
The program is designed to collect and analyze information about incoming/outgoing network traffic. Wireshark supports DNS, FDDI, FTP, HTTP, ICQ, IPV6, IPX, IRC, MAPI, MOUNT, NETBIOS, NFS, NNTP, POP, PPP, TCP, TELNET, X25, etc.
Click to expand...
 
You must log in or register to reply here.

Similar threads

chushpan
Analyzing the Encoder for VMware ESXi
Replies
0
Views
93
chushpan
chushpan
Man
Sniffers and more. Choosing a tool for intercepting and analyzing traffic.
Replies
0
Views
238
Man
Man
Man
Wireshark - A Complete Getting Started Guide
Replies
0
Views
314
Man
Man
Man
Opening a crypto container via a RAM dump
Replies
0
Views
144
Man
Man
Man
How to Create a RAT for Android
Replies
0
Views
248
Man
Man
Back
Top