Posts Tagged “tools”

07 Jan 2008

OllyDbg 2.0 - Pre-alpha 3 Released.

Posted by: Gerry Eisenhaur in Content, tags: ,

This was released on Dec. 25th, and I am just getting around to posting it… such a slacker, anyway: http://www.ollydbg.de/version2.html

Comments 1 Comment »

06 Jan 2008

Exe_Dump_Utility, pefile online!

Posted by: Gerry Eisenhaur in Content, tags: , ,

Gregory Piñero has release Exe_Dump_Utility, a web enabled wrapper for pefile. pefile is obviously more powerful and robust, but its still very cool and worth looking at.

Comments No Comments »

07 Dec 2007

Paterva releases Maltego GUI KZ3.

Posted by: Gerry Eisenhaur in Content, tags:

Maltego (formerly Evolution) is a great tool for examining relationships between entities (People, Domains, IP addresses, Files, etc). I first heard of Evolution during H.D. Moore’s and Valsmith’s ‘Tactical Exploitation’ talk (Paper, DefCon Video) at Blackhat 2007.

Maltego is available as a standalone Java application or a Web based application. If anyone is interested I archived a copy of the Evolution Beta 2 GUI.

Comments No Comments »

06 Dec 2007

Python and Reverse Engineering.

Posted by: Gerry Eisenhaur in Content, tags: , ,

Before I get into this post, I should give you a little background into what I do day-to-day. In a typical week I will do a large range of work mainly it revolves around reverse engineering, exploit development, vulnerability analysis, penetration testing, etc. The nature of my (and many other researchers in my shoes) work can create a very diversified work load each having different requirements and environments. With that in mind, for me, python is my language of choice. I have yet to hit a limitation with python that I haven’t been able to figure out a solution for.

This past weekend I was talking to an acquaintance of mine regarding reverse engineering, exploit and tool development, and similar subjects. It was an interesting talk until I told him that 99% of the time I am using python for everything with the other 1% being ASM (shellcode). That statement alone flipped a nice conversation into me getting told that I was wrong, that I must be an idiot because it was not possible to use a language such as python for what we were talking about. He then followed that up by basically saying python was ’stupid’ and a waste of time. There are a few things that piss me off and 2 of them are people telling me I am an idiot and people bashing python. After I finished explaining to him how wrong he was, I got the idea to write this post and hopefully enlighten someone to the joy python can be when reverse engineering.

(more…)

Comments No Comments »