aljaz/securedorg.github.io

mirror of https://github.com/aljazceru/securedorg.github.io.git synced 2025-12-20 15:34:19 +01:00

Files

Amanda Rousseau 57a0928cd1 updating retools

2017-03-20 14:14:16 -07:00

1.5 KiB

Raw Blame History

layout, permalink, title

layout	permalink	title
default	/RE101/section3/	RE Tools

Go Back to Reverse Engineering Malware 101

Section 3: Reverse Engineering (RE) Tools

Disassembler

Ida
- Free (Used in this worksop)
- Pro
Radare
Capstone

Decompilers

Snowman
dotPeek .NET decompiler

Debuggers

x64dbg (Used in this worksop)
Immunity
OllyDbg (Most Popular)
WinDbg

Information Gathering

CFF Explorer
Sysinternals Suite
- procmon
- procexplorer
InetSim: Internet Services Simulation Suite
Yara: pattern matching rule engine
Wireshark - network sniffing
API Monitor

Support

HxD Hex Editor
Python - used for automating tasks

Section 2 <- Back | Next -> Section 4