cylance / Ablation
Ablation is a tool for augmenting static analysis by extracting information at runtime, and importing it into IDA. It can resolve virtual calls, reveal interesting code, exclude heavily traversed regions, identify untested or undocumented features, visually diff samples, or perform root cause analysis simply by running samples. My favourite howe…
☆50Updated 8 years ago
Alternatives and similar repositories for Ablation:
Users that are interested in Ablation are comparing it to the libraries listed below
- IDA Pro resources, scripts, and configurations☆111Updated last year
- Use angr inside the radare2 debugger. Create an angr state from the current debugger state.☆34Updated 5 years ago
- This IDAPython script tags subroutines according to their use of imported functions☆73Updated 3 years ago
- ☆89Updated 5 years ago
- IDAtropy is a plugin for Hex-Ray's IDA Pro designed to generate charts of entropy and histograms using the power of idapython and matplot…☆139Updated 4 years ago
- Augmenting Static Reverse Engineering with Dynamic Analysis and Instrumentation☆132Updated 10 years ago
- An IDA Pro Plugin for embedding an IPython Kernel☆64Updated 5 years ago
- A combination of an IDAPython Plugin and a control version system that result in a new reverse engineering collaborative addon for IDA Pr…☆92Updated 8 years ago
- Use ltrace with pwnlib.tubes.process instances, useful for heap exploitation. Pwntools rocks!☆53Updated 7 years ago
- qb-sync is an open source tool to add some helpful glue between IDA Pro and Windbg. Its core feature is to dynamically synchronize IDA's …☆120Updated 9 years ago
- IDA Pro plugin to show functions in a tree view☆115Updated 4 years ago
- Solarized Dark IDA Pro Theme☆66Updated 12 years ago
- IDAPython plugin for finding Xrefs from a function☆48Updated 8 years ago
- Polymorphic VM and PoliCTF '17 reversing challenge.☆73Updated 7 months ago
- Uncovering Class Hierarchies in C++ Programs☆127Updated 2 years ago
- ☆72Updated 3 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆73Updated 5 years ago
- ☆100Updated 10 months ago
- x86 bootloader emulation with Miasm (case of NotPetya)☆41Updated 5 years ago
- Automatically exported from code.google.com/p/elfesteem☆34Updated 6 years ago
- Plugins for IDA Pro and Hex-Rays☆41Updated 6 years ago
- Automated library compilation and PDB annotation with CMake and IDA Pro☆20Updated 6 years ago
- MrsPicky - An IDAPython decompiler script that helps auditing memcpy() and memmove() calls☆123Updated last year
- Course sample for SMT-Based Binary Program Analysis training class☆31Updated 7 years ago
- Function Prefixing for IDA Pro☆148Updated 5 years ago
- IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.☆108Updated last year
- ☆33Updated 3 years ago
- A search tool for IDA☆70Updated 8 years ago
- Old mitigation-bounty code that was applicable to edge before it use webkit/chrome☆86Updated 8 years ago
- PoC for a snapshot-based coverage-guided fuzzer targeting Windows kernel components☆68Updated 3 years ago