pymsrpc is an attempt to develop a working library for communicating with remote Microsoft RPC endpoints. It includes an IDL parser and NDR data types for making requests. I wanted to get this up here in case you haven’t heard READ MORE
This was released on Dec. 25th, and I am just getting around to posting it… such a slacker, anyway: http://www.ollydbg.de/version2.html
Gregory PiÃ±ero has release Exe_Dump_Utility, a web enabled wrapper for pefile. pefile is obviously more powerful and robust, but its still very cool and worth looking at.
Maltego (formerly Evolution) is a great tool for examining relationships between entities (People, Domains, IP addresses, Files, etc). I first heard of Evolution during H.D. Moore’s and Valsmith’s ‘Tactical Exploitation’ talk (Paper, DefCon Video) at Blackhat 2007. Maltego is available READ MORE
Before I get into this post, I should give you a little background into what I do day-to-day. In a typical week I will do a large range of work mainly it revolves around reverse engineering, exploit development, vulnerability analysis, READ MORE