Login  |  Register

Latest links

AutoIt Obfuscator — Obfuscation for AutoIt Script Source Code

Oct 9, 2016 |
PR: 0
Obfuscate your AutoIt script source code & algorithms to protect it against reverse engineering analysis, cracking and decompilation. ... Read more

PE Format Poster

Jan 15, 2014 |
PR: 1
A PE Format poster in A1 59,4 x 84,1 cm format, including almost all of the structures from PE/PE32+ format (with comments from WinNT.h header file). ... Read more

BugChecker

Mar 7, 2011 |
PR: 2
BugChecker is a single-host kernel debugger for the Microsoft Windows 2000 and XP operating systems. "Single-host" means that the debugger and the debuggee (in this case the whole system, ... Read more

Valkyrie

Jan 1, 2011 |
N/A
A Decompiler for Clipper S87 & CA-Clipper 5. Supports CA-Clipper 5.0 through 5.2 ... Read more

Flasm

Oct 15, 2010 |
PR: 4
Flasm disassembles your entire SWF including all the timelines and events. Looking at disassembly, you learn how the Flash compiler works, which improves your ActionScript skills. You can also do some ... Read more

Popular Listings

Rasta Ring0 Debugger

Apr 3, 2008 |
PR: 5
RR0D is a ring 0 debugger. It offers the possibility to debug any kind of code (kernel/user/rasta land). Its philosophy is to be OS independent. That's why RR0D can today be installed on Linux, *BSD, ... Read more

ReFox

Apr 3, 2008 |
PR: 3
ReFox is a multi-purpose and easy-to-use utility for viewing and restoring source code from Visual FoxPro 9.0, VFP 8.0, VFP 7.0, VFP 6.0, VFP 5.0, VFP 3.0, FoxPro 2.x, FoxPro 1 and FoxBASE+ compiled ... Read more

Immunity Debugger

Apr 3, 2008 |
PR: 5
Immunity Debugger is a powerful new way to write exploits, analyze malware, and reverse engineer binary files. It builds on a solid user interface with function graphing, the industry's first heap ... Read more

Valkyrie

Jan 1, 2011 |
N/A
A Decompiler for Clipper S87 & CA-Clipper 5. Supports CA-Clipper 5.0 through 5.2 ... Read more

Microsoft Portable Executable and Common Object File Format Specification

Apr 4, 2008 |
PR: 0
This document specifies the structure of executable (image) files and object files under the Microsoft Windows family of operating systems. These files are referred to as Portable Executable (PE) and ... Read more

Top

Rasta Ring0 Debugger

Apr 3, 2008 |
PR: 5
RR0D is a ring 0 debugger. It offers the possibility to debug any kind of code (kernel/user/rasta land). Its philosophy is to be OS independent. That's why RR0D can today be installed on Linux, *BSD, ... Read more

ReFox

Apr 3, 2008 |
PR: 3
ReFox is a multi-purpose and easy-to-use utility for viewing and restoring source code from Visual FoxPro 9.0, VFP 8.0, VFP 7.0, VFP 6.0, VFP 5.0, VFP 3.0, FoxPro 2.x, FoxPro 1 and FoxBASE+ compiled ... Read more

Immunity Debugger

Apr 3, 2008 |
PR: 5
Immunity Debugger is a powerful new way to write exploits, analyze malware, and reverse engineer binary files. It builds on a solid user interface with function graphing, the industry's first heap ... Read more

Valkyrie

Jan 1, 2011 |
N/A
A Decompiler for Clipper S87 & CA-Clipper 5. Supports CA-Clipper 5.0 through 5.2 ... Read more

Microsoft Portable Executable and Common Object File Format Specification

Apr 4, 2008 |
PR: 0
This document specifies the structure of executable (image) files and object files under the Microsoft Windows family of operating systems. These files are referred to as Portable Executable (PE) and ... Read more

WiteG's Homepage

Apr 5, 2008 |
PR: 0
Assembler implementations of cryptographic algorithms, crypto tools and also crypto crackmes. ... Read more

REC - Reverse Engineering Compiler

Apr 9, 2008 |
PR: 4
REC is a portable reverse engineering compiler, or decompiler. It reads an executable file, and attempts to produce a C-like representation of the code and data used to build the executable file. ... Read more

Alex Ionescu’s Blog

Apr 4, 2008 |
PR: 5
Alex is a kernel developer, reverse engineer, and Microsoft Student Ambassador. This blog shares Alex’s views and news on Technology, OS Development and Reverse Engineering. ... Read more

Peering Inside the PE

Apr 4, 2008 |
PR: 2
A Tour of the Win32 Portable Executable File Format by Matt Pietrek. ... Read more

Syser Debugger

Apr 3, 2008 |
PR: 4
Syser Debugger is designed for Windows NT Family based on X86 platform. It is a core-level debugger with full-graphical interfaces and supports assembly debugging and source code debugging. ... Read more

Ring3 Circus

Apr 10, 2008 |
PR: 1
Diary of a programmer, journal of a hacker. ... Read more

Jason Geffner

Apr 4, 2008 |
PR: 4
A Reverse Engineer's Blog. ... Read more

PE Format Poster

Jan 15, 2014 |
PR: 1
A PE Format poster in A1 59,4 x 84,1 cm format, including almost all of the structures from PE/PE32+ format (with comments from WinNT.h header file). ... Read more

Reconstructer

Apr 5, 2008 |
PR: 4
This site primary mirrors my interests on low level stuff like reverse engineering, malware and rootkit research, debugging and troubleshooting applications, as well as software protections and its ... Read more

OllyDbg

Apr 3, 2008 |
PR: 5
OllyDbg is a 32-bit assembler level analysing debugger for Microsoft® Windows®. Emphasis on binary code analysis makes it particularly useful in cases where source is unavailable. OllyDbg is a ... Read more

Zeta Debugger

Apr 3, 2008 |
PR: 2
At this moment the debugger supports a several number of debugging formats used by compilers of two most known companies - Borland and Microsoft. ... Read more

Uninformed

Apr 5, 2008 |
PR: 5
Uninformed is a technical outlet for research in areas pertaining to security technologies, reverse engineering, and lowlevel programming. The goal, as the name implies, is to act as a medium for ... Read more

Executable and Linkable Format (ELF)

Apr 5, 2008 |
PR: 5
The Executable and Linking Format was originally developed and published by UNIX System Laboratories (USL) as part of the Application Binary Interface (ABI). The Tool Interface Standards committee ... Read more

Boomerang

Apr 3, 2008 |
PR: 5
This project is an attempt to develop a real decompiler for machine code programs through the open source community. A decompiler takes as input an executable file, and attempts to create a high ... Read more

OpenRCE

Apr 5, 2008 |
PR: 5
OpenRCE aims to serve as a centralized resource for reverse engineers (currently heavily win32/security/malcode biased) by hosting files, blogs, forums articles and more. ... Read more

WinDbg

Apr 3, 2008 |
PR: 5
You can use Debugging Tools for Windows to debug drivers, applications, and services on systems running Windows NT 4.0, Windows 2000, Windows XP, Windows Server 2003, Windows Vista, and Windows Server ... Read more

Breaking Eggs And Making Omelettes

Nov 7, 2008 |
PR: 7
Mike Melanson's blog on multimedia technology and reverse engineering. ... Read more

Linice

Apr 3, 2008 |
PR: 3
Linice is an Intel x86-based, Linux source-level kernel debugger with the look and feel of SoftIce for MS Windows. Linice is designed to be used by the people who have SoftIce experience. Linice ... Read more

diStorm64

Apr 9, 2008 |
PR: 4
diStorm is a binary stream disassembler. It's capable of disassembling 80x86 instructions in 64 bits (AMD64, x86-64) and both in 16 and 32 bits. In addition, it disassembles FPU, MMX, SSE, SSE2, SSE3 ... Read more

Brian Gladman's Home Page

Apr 5, 2008 |
PR: 5
Cryptographic implementations in C/C++, good, quality code. ... Read more

Nynaeve

Apr 3, 2008 |
PR: 5
Adventures in Windows debugging and reverse engineering. ... Read more

Joanna Rutkowska

Apr 3, 2008 |
PR: 6
The official blog of Joanna Rutkowska, new rootkit technologies. ... Read more

TatraDAS

Apr 9, 2008 |
PR: 0
TatraDAS is disassembler of x86 executables which supports PE, NE, MZ, COM, ELF and binary file formats. It includes disassembler, text viewer with syntax highlighting. ... Read more

bannedit's reverse engineering blog

Sep 17, 2010 |
PR: 2
I am a professional security researcher who enjoys working with vulnerabilities. I am fascinated by what causes vulnerable code and the methods used to exploit these flaws. ... Read more

Dancho Danchev's Blog

Apr 11, 2008 |
PR: 5
In the overwhelming sea of information, access to timely, insightful and independent open-source intelligence (OSINT) analyses is crucial for maintaining the necessary situational awareness to stay on ... Read more

Visual DuxDebugger

Oct 2, 2010 |
PR: 0
Visual DuxDebugger is a debugger disassembler for Windows 64 bits, it is the first version so it is still very simple, but it has some features that others debuggers doesn’t have, it debugs multiple ... Read more

DVLabs Blog

Apr 4, 2008 |
PR: 6
DVLabs blog. ... Read more

ESET Threat Blog

Apr 3, 2008 |
PR: 5
ESET's blog about new threats in malware world. ... Read more

VB RezQ

Apr 3, 2008 |
PR: 3
VB RezQ can recover source from all types of 32-bit Visual Basic executables i.e .exe, .ocx and .dll files created by VB4(32), VB5 and VB6. ... Read more

Hex-Rays

Apr 3, 2008 |
PR: 5
Hex-Rays is a decompiler that transforms binary applications into a high level C-like pseudo code. Unlike disassemblers, which perform the same task at a lower level, the decompiler output is concise ... Read more

corkami

Sep 17, 2010 |
N/A
Packers and protectors, antidebugging tricks, assembler. ... Read more

Anti Rootkit Blog

Apr 9, 2008 |
PR: 4
Antirootkit Software, News, Articles and Forums. ... Read more

Kaspersky Analyst's Diary

Apr 3, 2008 |
PR: 7
The Analyst's Diary is a weblog maintained by virus analysts from Kaspersky Lab headed by Eugene Kaspersky. Find out more about the authors of this weblog. ... Read more

TrendLabs Malware Blog

Apr 6, 2008 |
PR: 6
http://blog.trendmicro.com/ ... Read more

Microsoft Anti-Malware Engineering Team

Apr 4, 2008 |
PR: 7
This blog provides information about what's happening in the anti-malware technology team at Microsoft. We're the team that builds the core antivirus, antispyware, anti-rootkit, and related ... Read more

Hex blog

Apr 3, 2008 |
PR: 5
About IDA Pro, decompilation, programming, binary program anylasis, information security. ... Read more

AniProtect

Apr 18, 2008 |
PR: 0
All AntiRootkit,Rootkit,Virus And AntiVirus. ... Read more

IDA Pro

Apr 3, 2008 |
PR: 6
IDA Pro is a Windows or Linux hosted multi-processor disassembler and debugger that offers so many features it is hard to describe them all. ... Read more

KPNC reversing lab

Mar 13, 2009 |
PR: 0
Reverse engineering articles, anti-debugging tricks, many unpublished tips&tricks. ... Read more

Offensive Computing

Apr 3, 2008 |
PR: 5
Offensive Computing, LLC was formed by Valsmith and Danny Quist as a resource for the computer security community. The primary emphasis here is on malware collections and analysis for the purpose of ... Read more

MASM32

Apr 10, 2008 |
PR: 4
MASM32 version 9 is a working development for programmers who are interested in either learning or writing 32 bit Microsoft assembler (MASM). ... Read more

BugChecker

Mar 7, 2011 |
PR: 2
BugChecker is a single-host kernel debugger for the Microsoft Windows 2000 and XP operating systems. "Single-host" means that the debugger and the debuggee (in this case the whole system, ... Read more

ReversingLabs

Sep 17, 2010 |
PR: 4
ReversingLabs has been founded with the goal to provide the best file analysis tools and the best software protection tools. Our expertise in building superior software reversing tools, gives ... Read more

F-Secure Weblog

Apr 3, 2008 |
PR: 7
Most Recent News from the F-Secure Lab. ... Read more

eXeScope

Apr 3, 2008 |
PR: 4
eXeScope can analyze, display various information, and rewrite resources of executable files, that is, EXE, DLL, OCX, etc. without source files. ... Read more

Resource Builder

Apr 3, 2008 |
PR: 4
Resource Builder is the complete solution for Windows resource editing. ... Read more

VB Decompiler

Apr 3, 2008 |
PR: 3
VB Decompiler is decompiler for programs (EXE, DLL or OCX) written in Visual Basic 5.0/6.0. As you know, programs in Visual Basic can be compiled into interpreted p-code or into native code. ... Read more

My infected computer

Apr 3, 2008 |
PR: 3
Various information about malware analysis and reverse engineering. ... Read more

Peter Ferrie

Apr 9, 2008 |
PR: 5
Virtual machines detection, articles with malware analysis for Virus Bulletin. ... Read more

Restorator

Apr 3, 2008 |
PR: 5
Restorator is an utility to edit windows resources in applications and their components, e.g. files with .exe, .dll, .res, .rc, .dcr, extension (see PE files and RES files). ... Read more

ThreatFire Research Blog

Apr 11, 2008 |
PR: 5
Blog from the threat research team at ThreatFire. ... Read more

McAfee Avert Labs Blog

Apr 3, 2008 |
PR: 7
McAfee's antivirus labs blog. ... Read more

AT4RE FastScanner

Sep 19, 2010 |
PR: 1
FastScanner is a Detector for most packers, cryptors and compilers for PE Files Programmed in ASM and designed for ýfast access to most needed plugins. ... Read more

SysEye

Sep 19, 2010 |
PR: 3
Utility to control all objects that you see in Windows screen (text, combo boxes, buttons, pictures...). You will be able to enable disabled objects, to hide buttons, to modify menus... Useful utility ... Read more

Symantec Security Response Weblog

Apr 3, 2008 |
PR: 6
The Symantec Security Response Weblog has been created to provide a forum for the team to share ideas and commentary on emerging issues and trends. ... Read more

Anolis Resourcer

Sep 2, 2009 |
PR: 0
Resourcer is a powerful and flexible resource editor for Microsoft Windows that features full x64 and Vista/Win7 support, in addition to PNG icons and is also free and open-source (GPL). ... Read more

PEBrowse Professional Interactive

Apr 3, 2008 |
PR: 3
PEBrowse Professional Interactive builds upon the framework presented by PEBrowse Professional to create a very powerful, versatile, and customizable Win32 user mode debugger/disassembler. PEBrowse ... Read more

Sunbelt Blog

Apr 3, 2008 |
PR: 6
A blog about activities, products and ideas at Sunbelt Software, one of the leading developers of security software to protect against spyware, spam and other threats. ... Read more

DFM Editor

Apr 3, 2008 |
PR: 3
DFM Editor allows edit and create Borland Delphi VCL Forms in text and binary format. It is compatible with all Borland Delphi versions (including BDS). DFM Editor can extracts forms from compiled ... Read more

.NET Resourcer

Apr 3, 2008 |
PR: 6
Resourcer is an editor for .resources binaries and .resX XML file formats used with the .NET platform. Resourcer allows editing of name/string pairs, import of bitmaps/icons and and merging of ... Read more

Sandboxie

Apr 4, 2008 |
PR: 5
Sandboxie runs your applications in an isolated abstraction area called a sandbox. Under the supervision of Sandboxie, an application operates normally and at full speed, but can't effect permanent ... Read more

RDG Packer Detector

Sep 19, 2010 |
PR: 1
RDG Packer Detector is a file detector for exe packers, cryptors, scrabmlers, linkers, file joiners and installers. ... Read more

ThreatExpert Blog

Jul 4, 2008 |
PR: 4
ThreatExpert is an advanced automated threat analysis system designed to analyze and report the behavior of computer viruses, worms, trojans, adware, spyware, and other security-related risks in a ... Read more

VBReFormer

Apr 3, 2008 |
PR: 5
VBReFormer is a solution for recovering the design of each form and control, with all properties, values, all reference to external controls (ActiveX™ libraries), and all pictures. Then with ... Read more

SysAnalyzer

Sep 19, 2010 |
N/A
SysAnalyzer is an application that was designed to give malcode analysts an automated tool to quickly collect, compare, and report on the actions a binary took while running on the system. The ... Read more

File Info

Apr 9, 2008 |
PR: 2
File scanner/analyzer. ... Read more

FASM

Apr 10, 2008 |
PR: 5
FASM is an open source assembly language compiler for x86 and x86-64 processors (this includes the AMD64 and Intel EM64T architectures). ... Read more

PE Explorer

Apr 3, 2008 |
PR: 5
Designed for inspection and editing of Windows executable files, PE Explorer offers powerful static analysis and editing tools for working with EXE, DLL, ActiveX controls, and other executable file ... Read more

Indefinite Studies

Apr 26, 2009 |
PR: 4
Daniel Reynaud is currently a PhD student in France, in the computer security team of the Loria lab in the mostly harmless city of Nancy. His research focuses on computer viruses and more generally ... Read more

fist of god

Sep 17, 2010 |
N/A
This is my humble attempt at sharing questions, ideas, interesting topics and filthy pictures I stumble upon while doing what I do best (and most) – all sorts of geek stuff. I like programming, ... Read more

AutoIt Obfuscator — Obfuscation for AutoIt Script Source Code

Oct 9, 2016 |
PR: 0
Obfuscate your AutoIt script source code & algorithms to protect it against reverse engineering analysis, cracking and decompilation. ... Read more

j00ru//vx tech blog

Sep 17, 2010 |
PR: 4
As far as I recall, subjects related to programming (C, C++, x86 assembler, Python and so on), reverse engineering, malware analysis (just like the one before), Bughunting (again!), NT OS internals ... Read more

KaKeeware Application Monitor

Apr 3, 2008 |
PR: 3
KaKeeware Application Monitor is a very small API monitor that allows the user to monitor the APIs called by the given application. KAM supports 5577 different APIs as for now. KAM works as an API spy ... Read more

Reverse Mode

Apr 29, 2008 |
PR: 6
Ruben Santamarta is an european security researcher. ... Read more

.NET Reflector

Apr 3, 2008 |
PR: 6
Reflector is the class browser, explorer, analyzer and documentation viewer for .NET. Reflector allows to easily view, navigate, search, decompile and analyze .NET assemblies in C#, Visual Basic and ... Read more

Hackman Suite

Apr 3, 2008 |
PR: 0
Hackman Suite is a multi-module all purpose debugging tool. It includes a hex editor, a disassembler, a template editor, a hex calculator and other everyday useful tools to assist programmers and code ... Read more

TracePlus

Apr 3, 2008 |
PR: 4
A wide range of tools to monitor system and network activity. ... Read more

ExeInfo PE

Apr 9, 2008 |
PR: 2
Packer and protection detector for executable files. ... Read more

Hiew

Apr 3, 2008 |
PR: 4
Hiew is an excellent hex-editor and disassembler with support for PE, PE32+, NE files. ... Read more

HT Editor

Apr 3, 2008 |
PR: 4
HT is a file editor / viewer / analyzer for executables. The goal is to combine the low-level functionality of a debugger and the usability of IDEs. ... Read more

gynvael.coldwind//vx.log

Sep 17, 2010 |
N/A
Reverse engineering, exploits, programming, game development and many more. ... Read more

Piotr Bania Chronicles

Sep 17, 2010 |
PR: 2
Computer security, reverse engineering, antivirus development, game programming, gsm telephony, martial arts, life and everything. ... Read more

Resource Hacker

Apr 3, 2008 |
PR: 5
Resource Hacker is a freeware utility to view, modify, rename, add, delete and extract resources in 32bit Windows executables and resource files (*.res). It incorporates an internal resource script ... Read more

C++ Tutorials & Reference

Apr 15, 2008 |
PR: 6
C++ Reference, Tutorials, Examples. ... Read more

Rohitab API Monitor

Apr 3, 2008 |
PR: 3
API Monitor is a software that monitors and displays API calls made by applications. Its a powerful tool for seeing how Windows and other applications work or tracking down problems that you have in ... Read more

NASM

Apr 10, 2008 |
PR: 6
The Netwide Assembler, NASM, is an 80x86 and x86-64 assembler designed for portability and modularity. It supports a range of object file formats, including Linux and *BSD a.out, ELF, COFF, Mach-O, ... Read more

WinAsm Studio

PR: 5
WinAsm Studio is a free Integrated Development Environment IDE for developing 32-bit Windows and 16-bit DOS programs using the Assembler. The Microsoft Macro Assembler (MASM) is supported inherently, ... Read more

The Customiser

Sep 19, 2010 |
PR: 1
The Customiser allows you to set the position and size of any window, button or other control and set the text of these controls. These changes can be permanently saved for any application and readily ... Read more

HxD - Freeware Hex Editor and Disk Editor

Apr 10, 2008 |
PR: 4
HxD is a carefully designed and fast hex editor including raw disk editing, modifying foreign RAM and handling files of any size. ... Read more

Ero Carrera's blog

Sep 17, 2010 |
PR: 4
I currently work for Sabre Security in Bochum, Germany. Up to November 2005 I worked for F-Secure Corporation as an Anti-Virus Researcher in the research Lab in San Jose, CA. The company's ... Read more

KOrUPt

Sep 17, 2010 |
PR: 4
Generally we prefer to focus on Binary Analysis and Reverse Engineering, however I'm sure there's something everyone can enjoy! ... Read more

RCE Cafe

Sep 17, 2010 |
PR: 4
Reverse engineering blog by HexRay's employee - Daniel Pistelli, .net reversing, CFF Explorer notes and more. ... Read more

Fast Horizon

Jul 7, 2008 |
PR: 0
Greg Hoglund's blog about rootkit technologies, information security and reverse engineering. ... Read more

Protection ID

Apr 12, 2008 |
PR: 3
Application which can detect most protection systems. Mainly detects CD/DVD protection systems like SecuRom, StarForce, SafeDisc, Tages. Also it can detect many different protectors, packers for PE ... Read more