mounirthabet

Pinned Repositories

• labeless

  Labeless is a multipurpose IDA Pro plugin system for labels/comments synchronization with a debugger backend, with complex memory dumping and interactive Python scripting capabilities.

  Language:C++520436381

• Ablation

  Ablation is a tool for augmenting static analysis by extracting information at runtime, and importing it into IDA. It can resolve virtual calls, reveal interesting code, exclude heavily traversed regions, identify untested or undocumented features, visually diff samples, or perform root cause analysis simply by running samples. My favourite however is the virtual call resolution with fully interactive x-refs. It's simple, elegant, and disassembled C++ reads like C! It helps me time and time again.

  Language:C++4811212

• frida

  Clone this repo to build Frida

  Language:Meson16.6k3282.9k1.7k

• Gepetto

  IDA plugin which queries uses language models to speed up reverse-engineering

  Language:Python2.9k5037266

• capa

  The FLARE team's open-source tool to identify capabilities in executable files.

  Language:Python5k821k568

• x64dbg-vmp-trace

  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared up A LOT of misconceptions I had regarding VMP, and helped me not be as spooked as before about trying to use complex libs

  Language:Python55218

• DotX64Dbg

  x64Dbg plugin that enables C# plugins with hot-loading support and scripting.

  Language:C++210203124

mounirthabet's Repositories