Search the Community

Showing results for tags 'reverse'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Staff Control
    • Staff Announcements
    • Moderators
    • Staff
    • Administration
  • General doubts | News
    • General doubts
    • News
  • Hacking | Remote Administration | Bugs & Exploits
    • Hacking
    • Remote Administration
    • Bugs & Exploits
  • Programming | Web | SEO | Prefabricated applications
    • General Programming
    • Web Programming
    • Prefabricated Applications
    • SEO
  • Pentesting Zone
  • Security & Anonymity
  • Operating Systems | Hardware | Programs
  • Graphic Design
  • vBCms Comments
  • live stream tv
  • Marketplace
  • Pentesting Premium
  • Modders Section
  • PRIV8-Section
  • Pentesting Zone PRIV8
  • Carding Zone PRIV8
  • Recycle Bin

Blogs

There are no results to display.

There are no results to display.


Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


About Me


Location


Interests


Occupation


TeamViewer


Twitter


Facebook


Youtube


Google+


Tox

Found 56 results

  1. Dexcalibur Dexcalibur is an Android reverse engineering platform focus on instrumentation automation. Its particularity is to use dynamic analysis to improve static analysis heuristics. It aims to automate boring tasks related to dynamic instrumentation, such as : Decompile/disass intercepted bytecode at runtime Write hook code and Manage a lot of hook message Search interesting pattern/things to hook Process data gathered by hook (dex file, invoked method, class loader, …) and so … But not only that, because Dexcalibur has its own static analysis engine and it is able to execute a partial piece of smali. Features and limitations Actually, the biggest limitation is Dexcalibur is not able to generate source code of hook targeting native function (into JNI library). However, you can declare manually a Frida’s Interceptor by editing a hook. Assuming Dexcalibur does not provide (for the moment) features to analyze native parts such as the JNI library or JNA, only features and limitations related to the Java part have been detailed. Analysis accuracy depends on the completeness of the Android API image used during the early steps of the analysis. That means, if you use a DEX file generated from the Android.jar file from Android SDK, some references to internal methods, fields, or classes from Android java API could be missing. Better results are obtained when the analysis starts from a “boot.oat” file extracted directly from a real device running the expected Android version. Changelog v0.7.8 Fixed issues : #43, #42 : Better detection and remediation of issues related to target platform and to target device Improvements : SmaliParser works on Windows Add support of Android API 30 [hide][Hidden Content]]
  2. Unpack archive. Launch Warzone Cracked.exe Unpack archive. Launch Warzone Cracked.exe Port forwarding instructions: Step 1) Control Panel > Firewall and Network > Allow an App through Firewall > Select “WARZONE RAT 2.70.exe” Step 2) Control Panel > Windows Defender Firewall > Advanced Settings Step 3) a) Inbound Rules > New Rule > Port > TCP > Specific Port you want b) Inbound Rules > New Rule > Port > UDP > Specific Port you want c) Outbound Rules > New Rule > Port > TCP > Specific Port you want d) Outbound Rules > New Rule > Port > UDP > Specific Port you want Step 4) Build your server with your port and your VPS IP address or DNS. Download: [Hidden Content]
  3. Dexcalibur Dexcalibur is an Android reverse engineering platform focus on instrumentation automation. Its particularity is to use dynamic analysis to improve static analysis heuristics. It aims to automate boring tasks related to dynamic instrumentation Decompile/disass intercepted bytecode at runtime Write hook code and Manage a lot of hook message Search interesting pattern/things to hook Process data gathered by hook (dex file, invoked method, class loader, …) and so … But not only that, because Dexcalibur has its own static analysis engine and it is able to execute a partial piece of smali. Features and limitations Actually, the biggest limitation is Dexcalibur is not able to generate source code of hook targeting native function (into JNI library). However, you can declare manually a Frida’s Interceptor by editing a hook. Assuming Dexcalibur does not provide (for the moment) features to analyze native parts such as the JNI library or JNA, only features and limitations related to the Java part have been detailed. Analysis accuracy depends on the completeness of the Android API image used during the early steps of the analysis. That means, if you use a DEX file generated from the Android.jar file from Android SDK, some references to internal methods, fields, or classes from Android java API could be missing. Better results are obtained when the analysis starts from a “boot.oat” file extracted directly from a real device running the expected Android version. [hide][Hidden Content]]
  4. Beginning with a basic primer on reverse engineering-including computer internals, operating systems, and assembly language-and then discussing the various applications of reverse engineering, this book provides readers with practical, in-depth techniques for software reverse engineering. The book is broken into two parts, the first deals with security-related reverse engineering and the second explores the more practical aspects of reverse engineering. In addition, the author explains how to reverse engineer a third-party software library to improve interfacing and how to reverse engineer a competitor's software to build a better product. The first popular book to show how software reverse engineering can help defend against security threats, speed up development, and unlock the secrets of competitive products Helps developers plug security holes by demonstrating how hackers exploit reverse engineering techniques to crack copy-protection schemes and identify software targets for viruses and other malware Offers a primer on advanced reverse-engineering, delving into "disassembly"-code-level reverse engineering-and explaining how to decipher assembly language [Hidden Content] [hide][Hidden Content]]
  5. In this video we're going to review the widely used tool: OllyDbg. Ollydbg is a tool for debugging used for binary code analysis. It converts the binary language to an assembly language. Assembly language is an ISA (Instruction Set Architecture) based low level language which is user friendly and has an efficient code. It is an application to figure out the bugs in a program, troubleshoot it and run specific parts of it and see how it works. We talk about Pros and Cons of OllyDbg, how to install it and it's uses. [hide][Hidden Content]]
  6. Ghidra is a free and open-source Software for Reverse Engineering of executable program(Binary) including Mobile Apps. Ghidra supports installation on multiple OS platforms inc. Windows, Linux and MacOS. [hide][Hidden Content]]
  7. Wait, what's reverse engineering? Wikipedia defines it as: Reverse engineering, also called backwards engineering or back engineering, is the process by which an artificial object is deconstructed to reveal its designs, architecture, code, or to extract knowledge from the object. It is similar to scientific research, the only difference being that scientific research is conducted into a natural phenomenon. [hide][Hidden Content]]
  8. Descripción del producto Dan Kaminsky is the Director of Penetration Testing for IOActive. Previously of Cisco and Avaya, Dan has been operating professionally in the security space since 1999. He is best known for his "Black Ops" series of talks at the well respected Black Hat Briefings conferences. He is also the only speaker who has attended and spoken at every single "Blue Hat" Microsoft internal training event. Dan focuses on design level fault analysis, particularly against massive-scale network applications. Dan regularly collects detailed data on the health of the worlwide Internet, and recently used this data to detect the worldwide proliferation of a major rootkit. Dan is one of the few individuals in the world to combine both technical expertise with executive level consulting skills and prowess. [Hidden Content] [hide][Hidden Content]]
  9. English | 2020 | ISBN-13 : 978-1800207974 | 322 Pages | EPUB | 15.81 MB Detect potentials bugs in your code or program and develop your own tools using the Ghidra reverse engineering framework developed by the NSA project Key Features: Make the most of Ghidra on different platforms such as Linux, Windows, and macOS Leverage a variety of plug-ins and extensions to perform disassembly, assembly, decompilation, and scripting Discover how you can meet your cybersecurity needs by creating custom patches and tools Book Description: Ghidra, an open source software reverse engineering (SRE) framework created by the NSA research directorate, enables users to analyze compiled code on any platform, whether Linux, Windows, or macOS. This book is a starting point for developers interested in leveraging Ghidra to create patches and extend tool capabilities to meet their cybersecurity needs. You'll begin by installing Ghidra and exploring its features, and gradually learn how to automate reverse engineering tasks using Ghidra plug-ins. You'll then see how to set up an environment to perform malware analysis using Ghidra and how to use it in the headless mode. As you progress, you'll use Ghidra scripting to automate the task of identifying vulnerabilities in executable binaries. The book also covers advanced topics such as developing Ghidra plug-ins, developing your own GUI, incorporating new process architectures if needed, and contributing to the Ghidra project. By the end of this Ghidra book, you'll have developed the skills you need to harness the power of Ghidra for analyzing and avoiding potential vulnerabilities in code and networks. What you will learn: Get to grips with using Ghidra's features, plug-ins, and extensions Understand how you can contribute to Ghidra Focus on reverse engineering malware and perform binary auditing Automate reverse engineering tasks with Ghidra plug-ins Become well-versed with developing your own Ghidra extensions, scripts, and features Automate the task of looking for vulnerabilities in executable binaries using Ghidra scripting Find out how to use Ghidra in the headless mode Who this book is for: This SRE book is for developers, software engineers, or any IT professional with some understanding of cybersecurity essentials. Prior knowledge of Java or Python, along with experience in programming or developing applications, is required before getting started with this book. Table of Contents - Getting Started with Ghidra - Automating RE Tasks with Ghidra Scripts - Ghidra Debug Mode - Using Ghidra Extensions - Reversing Malware Using Ghidra - Scripting Malware Analysis - Using Ghidra Headless Analyzer - Auditing Program Binaries - Scripting Binary Audits - Developing Ghidra Plugins - Incorporating New Binary Formats - Analyzing Processor Modules - Contributing to the Ghidra Community - Extending Ghidra for Advanced Reverse Engineering [Hidden Content] [hide][Hidden Content]]
  10. itsMe

    NukeShell - Reverse shell

    Features Connection is encrypted using random RSA + AES key Multiple clients support Execute shell commands Download/Upload files Take screenshot Cross platform [hide][Hidden Content]]
  11. What you'll learn Web Hacking Website defacement Tampering Cookies Hacking Admin Passwords Hack Bank Accounts to Transfer Money Stealing email mailing lists Reversing Encryption Tampering voting pages Hacking website database Tampering browser javascript to gain access How to crack software serial number keys Remove Nag Screen Reminders asking you to register Convert Trial Software to Fully Functional Software Extend 30-day Trial Period Software Learn Reverse Engineering and Assembly Language Browser Spoofing SQL Injection Attacks Port scanning Log Injection Attacks Computer Forensics Hacking Captchas Requirements Basic knowledge of HTML, Javascript and SQL Basic understanding of GET and POST requests A PC, Linux not required Basic knowledge in C, Assembly Language and Win32 API would be helpful but not mandatory Description If you want to learn ethical hacking & also reverse engineering the fun and easy way like playing a computer game, then this course is for you. There exists on the Internet several websites which allows people to hack and also to reverse software. These websites typically have different levels from easy to advanced. By solving each level and gradually levelling up, you will learn hacking and reversing. All you need is a PC. In this course I am only using a Windows PC to do ethical hacking and reverse engineering. The website we will be hacking is DefendTheWeb which is a popular hacker's playground where hackers play hacking games reminiscent of CTF (Capture the Flag) and learn at the same time. However, without some help and guidance you will find it quite challenging. Hence this course. I will walk through each level from Basic to Realistic. For the Reverse Engineering lessons, you will learn how to reverse CrackMe's. A CrackMe is a small program designed to test a programmer's reverse engineering skills. These CrackMe's typically have different levels from easy to advanced. By solving each level and gradually levelling up, you will learn reverse engineering (reversing). Traditionally, reverse engineering is taught by first learning C/C++, assembly language and then debugging. Note that we do not crack software nor condone the act of cracking software. The crackme's we will be reversing is provided by CrackingLessons and Crackmes One which are a popular reverser's playground . Information on solving crackmes on the Internet is terse and unstructured. Hence this course. I will walk through each level just like in a classroom where you can follow along and ask questions in the Q & A section. All you need is a PC running Windows. Great way to learn Web Development, Information Technology (IT), Assembly programming and Reverse Engineering: If you had always wanted to learn HTML, Javascript, PHP, MySQL, etc, Assembly and Reverse Engineering, what better way than to learn how to hack websites ethically and reverse engineering. . This course is also a great stepping stone to other Reverse Engineering fields like malware analysis, exploits development and software testing. So let's get started in your journey of hacking & cracking to learn. This course is backed by a 30-day money back guarantee. So, go ahead and enroll in this course now and start hacking the fun and easy way! Who this course is for: Web developers who have no knowledge on hacking Students who want to learn hacking the fun way by hacking real websites (legally) Those who enjoy computer games and want to try hacking as a game Programmers who want to level up their skill to reverse engineering software IT or computing students who want to know how software works internally [Hidden Content] [hide][Hidden Content]]
  12. The tool is under development. What this tool will explore upon a successful build: Reverse Proxying Sites. Bypassing many limitations during 2FA phishing Capturing POST and JSON request on the fly Forcing Elements in Requests Javascript Injection Cookies Capturing even those from javascript YAML Configuration files. Idea borrowed from evilginx2 Allowing Proxies to be used for each individual upcoming connection Direct DOM element values capturing before form submission or any other event 2FA Bypassed Auto-Cert generation. [hide][Hidden Content]]
  13. itsMe

    Keylogger + Reverse Shell

    Makeing web based Android Keylogger & Android Reverse Shell with netcat configuration. Here is the source code of an android application which is help to hack victim Mobile Shell connection via netcat & capture victim key strokes via http server in one Application. [hide][Hidden Content]]
  14. Overview: NinjaDroid uses a modified version of the Androguard AXMLParser ([Hidden Content]) together with a series of other Python scripts (by Paolo Rovelli) based on aapt, keytool, string and such to extract a series of information from a given APK package, such as: APK file info (i.e. file size, MD5, SHA-1, SHA-256 and SHA-512); App info (e.g. app name, package name, version, lists of permissions, list of Activities/Services/BroadcastReceivers, etc...); Digital certificate info (e.g. validity, serial number, fingerprint MD5, SHA-1, SHA-256 and signture), including certificate issuer/owner info (e.g. name, email, company, country, etc...); All the strings hard-coded into the classes.dex file; The URLs and shell commands hard-coded into the classes.dex file; AndroidManifest file info (i.e. file size, MD5, SHA-1, SHA-256 and SHA-512); classes.dex file info (i.e. file size, MD5, SHA-1, SHA-256 and SHA-512); CERT.RSA/DSA file info (i.e. file size, MD5, SHA-1, SHA-256 and SHA-512); List of file entries (i.e. file name, file size, MD5, SHA-1, SHA-256 and SHA-512) in the APK package. Furthermore, NinjaDroid uses apktool ([Hidden Content]) and dex2jar ([Hidden Content]), together with other Python scripts in order to extract from an APK package: classes.dex file; translated .jar file (thanks to dex2jar); disassembled smali files (thanks to apktool); AndroidManifest.xml file (thanks to apktool); CERT.RSA file; assets/ and res/ folders together with their content (thanks to apktool); JSON and HTML report files, which contains all the extracted APK metadata. [hide][Hidden Content]]
  15. APKLab seamlessly integrates the best open-source tools: Apktool, Jadx, uber-apk-signer and more to the excellent VS Code so you can focus on app analysis and get it done without leaving the IDE. Features Decode all the resources from an APK Disassemble the APK to Dalvik bytecode aka Smali Decompile the APK to Java source Analyze & Hack effectively with feature-rich VS Code Build an APK from Smali and resources Rebuild an APK in Debug mode for dynamic analysis Sign the APK seamlessly during the build Install the APK directly from VS Code Support for Apktool-style projects (apktool.yml) Support for most Apktool CLI arguments Android resource frameworks management (Coming soon!) Support for user-provided keystore for APK signing Download and configure missing dependencies Excellent Smali language support with Smalise Supports Linux, Windows, and Mac [hide][Hidden Content]]
  16. A cross-platform (Windows, Linux, Mac) hex editor for reverse engineering, and everything else. Features Large (1TB+) file support Decoding of integer/floating point value types Disassembly of machine code Highlighting and annotation of ranges of bytes Side by side comparision of selections 0.3.1 Correctly display signed 16-bit values in "Decode values" panel. Fix status bar offset going out of sync. Move cursor when a row in the "Comments" panel is double clicked. Focus document after updating position/selection via "Comments" panel. [hide][Hidden Content]]
  17. APK Lab The ultimate Android RE experience right inside your VS Code. APKLab seamlessly integrates the best open-source tools: Apktool, Jadx, uber-apk-signer, and more to the excellent VS Code so you can focus on app analysis and get it done without leaving the IDE. Features Decode all the resources from an APK Disassemble the APK to Dalvik bytecode aka Smali Decompile the APK to Java source Analyze & Hack effectively with feature-rich VS Code Build an APK from Smali and resources Sign the APK seamlessly during the build Install the APK directly from VS Code Support for Apktool-style projects (apktool.yml) Support for most Apktool CLI arguments Android resource frameworks management (Coming soon!) Support for user-provided keystore for APK signing Download and configure missing dependencies Excellent Smali language support with Smalise Supports Linux, Windows, and Mac [hide][Hidden Content]]
  18. What you'll learn Android Malware Reverse Engineering How to Create a Ransomware Decryption Tool Mobile Security Static Analysis Dynamic Analysis Android App development fundamentals Requirements Basic IT knowledge Description This is an introductory course suitable for cyber security newcomers as well as cyber security professionals who would like to dive into the world of mobile security. In recent years, Android has established itself as a leader in the mobile OS market. For this reason, it is a common target of abuse among cyber-criminals. This course will provide students with the ability to set up an analysis environment, allowing them to analyse suspicious Android apps and determine whether or not they are malicious. The syllabus assumes that the student has little or no knowledge of Android security. It therefore provides the fundamentals not only on Android security, but on Android applications in general. The course will take students through the process of developing a basic Android application, which will provide insight into the inner workings of an Android APK. Upon completion, students will have their own analysis environment along with the knowledge required to analyse suspicious APKs. Course outline: -Course Requirements -Intro to Android -Course/Lab Setup -Developing a Basic Android App -Analyzing Android Apps -Case Study: Analyzing an actual ransomware and developing a decryption tool Who this course is for: Students interested in Cyber Security and Android Reverse Engineering [Hidden Content] [hide][Hidden Content]]
  19. JSshell – a JavaScript reverse shell. This using to exploit XSS remotely, help to find blind XSS, … This tool works for both Unix and Windows operating system and it can be running with both Python 2 and Python 3. This is a big update of JShell – a tool to get a JavaScript shell with XSS by s0med3v. JSshell also doesn’t require Netcat (different from other javascript shells). New in JSshell version 2.9 Updated in the new version of JShell 2.9: New JSshell command: cookie -> allows to view the cookies of the current user who established the shell Support javascript function: Fixed some bugs [hide][Hidden Content]]
  20. Reverse PowerShell Functions that can be used to gain Reverse Shells with PowerShell. Invoke-ReversePowerShell function can be used to connect to Start-Listener as well as netcat and Metasploit modules or whatever other listeners you use. This is a PowerShell module meaning it only contains functions/cmdlets to be imported into a PowerShell session. If you wish to execute one of the commands whenever the file is run just add the command you wish to execute to the bottom of the file. BLUE TEAM DISCOVERY Find-ReverseShell.ps1 can be used to search the Windows Event Log for when a Reverse Shell is created that uses a System.Net.Sockets.TcpListener object. This will discover any reverse shell that creates a TcpListener object and not just the below module. This method does not catch PowerCat.ps1 which I am still looking for a good way to discover. This part is still a work in progress. [hide][Hidden Content]]
  21. Features Connection is encrypted using random RSA + AES key Multiple clients support Execute shell commands Download/Upload files Take screenshot Cross platform [hide][Hidden Content]]
  22. HTTP-revshell - Powershell Reverse Shell Using HTTP/S Protocol With AMSI Bypass And Proxy Aware HTTP-revshell is a tool focused on redteam exercises and pentesters. This tool provides a reverse connection through the http/s protocol. It use a covert channel to gain control over the victim machine through web requests and thus evade solutions such as IDS, IPS and AV. Features SSL Proxy Aware Upload Function Download Function Error Control AMSI bypass Multiple sessions [only server-multisession.py] Autocomplete PowerShell functions (optional) [only server.py] [hide][Hidden Content]]
  23. r2 is a rewrite from scratch of radare in order to provide a set of libraries and tools to work with binary files. Radare project started as a forensics tool, a scriptable command line hexadecimal editor able to open disk files, but later support for analyzing binaries, disassembling code, debugging programs, attaching to remote gdb servers, … radare2 is portable. The main tool of the whole framework. It uses the core of the hexadecimal editor and debugger. radare2 allows you to open a number of input/output sources as if they were simple, plain files, including disks, network connections, kernel drivers, processes under debugging, and so on. It implements an advanced command line interface for moving around a file, analyzing data, disassembling, binary patching, data comparison, searching, replacing, and visualizing. It can be scripted with a variety of languages, including Python, Ruby, JavaScript, Lua, and Perl. Architectures: 6502, 8051, CRIS, H8/300, LH5801, T8200, arc, arm, avr, bf, blackfin, xap, dalvik, dcpu16, gameboy, i386, i4004, i8080, m68k, malbolge, mips, msil, msp430, nios II, powerpc, rar, sh, snes, sparc, tms320 (c54x c55x c55+), V810, x86-64, zimg, risc-v. File Formats: ELF, Mach-O, Fatmach-O, PE, PE+, MZ, COFF, OMF, TE, XBE, BIOS/UEFI, Dyldcache, DEX, ART, CGC, Java class, Android boot image, Plan9 executable, ZIMG, MBN/SBL bootloader, ELF coredump, MDMP (Windows minidump), WASM (WebAssembly binary), Commodore VICE emulator, Game Boy (Advance), Nintendo DS ROMs and Nintendo 3DS FIRMs, various filesystems. Operating Systems: Windows (since XP), GNU/Linux, OS X, [Net|Free|Open]BSD, Android, iOS, OSX, QNX, Solaris, Haiku, FirefoxOS Bindings: Vala/Genie, Python (2, 3), NodeJS, Lua, Go, Perl, Guile, php5, newlisp, Ruby, Java, OCaml, … radare2 v4.6 has been released. [hide][Hidden Content]]
  24. Reverse Engineering and Exploit Development Application Penetration Testing for Security Professionals What you'll learn Learn more about various reversing tools Learn more about common vulnerabilities and how to find them You will become more familiar with simple exploits, web exploitation, and ARM exploitation [Hidden Content] [hide][Hidden Content]]
  25. UEFI_RETool A tool for UEFI firmware reverse engineering. The tool consists of a plugin for IDA and a set of scripts for UEFI firmware analyzing. [hide][Hidden Content]]