GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → mandiant → FIDL

mandiant / FIDL

Licence: MIT license
A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research

Programming Languages

python
139335 projects - #7 most used programming language

Labels

apiresearchdecompilermalwareidavulnerabilityreversing

Projects that are alternatives of or similar to FIDL

Fidl
A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research
Stars: ✭ 319 (-24.23%)
Mutual labels:  research, decompiler, malware, ida, vulnerability
cerberus research
Research tools for analysing Cerberus banking trojan.
Stars: ✭ 110 (-73.87%)
Mutual labels:  research, malware
showstopper
ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solutions that clash with standard anti-debug methods.
Stars: ✭ 132 (-68.65%)
Mutual labels:  research, malware
Anti-Debug-DB
Anti-Debug encyclopedia contains methods used by malware to verify if they are executed under debugging. It includes the description of various anti-debug tricks, their implementation, and recommendations of how to mitigate the each trick.
Stars: ✭ 20 (-95.25%)
Mutual labels:  research, malware
Dsync
IDAPython plugin that synchronizes disassembler and decompiler views
Stars: ✭ 399 (-5.23%)
Mutual labels:  decompiler, ida
Mrspicky
MrsPicky - An IDAPython decompiler script that helps auditing calls to the memcpy() and memmove() functions.
Stars: ✭ 86 (-79.57%)
Mutual labels:  decompiler, vulnerability
vulnerability-lab
漏洞研究
Stars: ✭ 379 (-9.98%)
Mutual labels:  research, vulnerability
firmeye
IoT固件漏洞挖掘工具
Stars: ✭ 133 (-68.41%)
Mutual labels:  ida, vulnerability
Android unpacker
A (hopefully) generic unpacker for packed Android apps.
Stars: ✭ 320 (-23.99%)
Mutual labels:  research, malware
Invizzzible
InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date detection and evasion techniques as well as fixes for them.
Stars: ✭ 268 (-36.34%)
Mutual labels:  research, malware
xray
Hexrays decompiler plugin that colorizes and filters the decompiler's output based on regular expressions
Stars: ✭ 97 (-76.96%)
Mutual labels:  decompiler, ida
Poc
Proofs-of-concept
Stars: ✭ 467 (+10.93%)
Mutual labels:  research, vulnerability
hacking-resources
Hacking resources and cheat sheets. References, tools, scripts, tutorials, and other resources that help offensive and defensive security professionals.
Stars: ✭ 1,386 (+229.22%)
Mutual labels:  malware, vulnerability
Hrdevhelper
Context-sensitive HexRays decompiler plugin that visualizes the ctree of decompiled functions.
Stars: ✭ 193 (-54.16%)
Mutual labels:  decompiler, ida
Anti-Debugging
A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 297 (-29.45%)
Mutual labels:  malware, reversing
hack
Kubernetes security and vulnerability tools and utilities.
Stars: ✭ 56 (-86.7%)
Mutual labels:  research, vulnerability
Whitecomet-Research
Research on malware creation and protection
Stars: ✭ 62 (-85.27%)
Mutual labels:  research, malware
Solr Injection
Apache Solr Injection Research
Stars: ✭ 464 (+10.21%)
Mutual labels:  research, vulnerability
Myriam
A vulnerable iOS App with Security Challenges for the Security Researcher inside you.
Stars: ✭ 146 (-65.32%)
Mutual labels:  research, vulnerability
Vuvuzela
Private messaging system that hides metadata
Stars: ✭ 2,423 (+475.53%)
Mutual labels:  research
View All Similar Projects ➔

GitHub PyPI - Status GitHub release (latest by date) PyPI PyPI - Python Version Documentation Status

███████╗██╗██████╗ ██╗     
██╔════╝██║██╔══██╗██║     
█████╗  ██║██║  ██║██║     
██╔══╝  ██║██║  ██║██║     
██║     ██║██████╔╝███████╗
╚═╝     ╚═╝╚═════╝ ╚══════╝

FLARE IDA Decompiler Library

FIDLing with the decompiler API

This is a set of utilities wrapping the decompiler API into something sane. This code focus on vulnerability research and bug hunting, however most of the functionality is generic enough to be used for broader reverse engineering purposes.

Installation

The recommended way to install this is to use python's pip. Keep in mind that you have to use the pip corresponding to the Python installation IDA is using. In case you have more than one installation (for example 32 and 64 bits), you can find which one IDA uses by typing this into the console:

import sys
sys.version

cd to the directory containing setup.py

Release mode: pip install .

Development (editable) mode: pip install -e .[dev]

In development mode, pip will install pytest and some linters helpful while developing, as well as creating symbolic links under python's packages directory instead of copying FIDL to it. This allows you to modify your .py files and test on the fly, without needing to reinstall every time you make a change :)

Documentation

You can find up to date documentation online here

The source distribution has built-in documentation here

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].