Login  |  Register

Latest links

AutoIt Obfuscator — Obfuscation for AutoIt Script Source Code

Oct 9, 2016 |
PR: 0
Obfuscate your AutoIt script source code & algorithms to protect it against reverse engineering analysis, cracking and decompilation. ... Read more

PE Format Poster

Jan 15, 2014 |
PR: 1
A PE Format poster in A1 59,4 x 84,1 cm format, including almost all of the structures from PE/PE32+ format (with comments from WinNT.h header file). ... Read more

BugChecker

Mar 7, 2011 |
PR: 2
BugChecker is a single-host kernel debugger for the Microsoft Windows 2000 and XP operating systems. "Single-host" means that the debugger and the debuggee (in this case the whole system, ... Read more

Valkyrie

Jan 1, 2011 |
N/A
A Decompiler for Clipper S87 & CA-Clipper 5. Supports CA-Clipper 5.0 through 5.2 ... Read more

Flasm

Oct 15, 2010 |
PR: 4
Flasm disassembles your entire SWF including all the timelines and events. Looking at disassembly, you learn how the Flash compiler works, which improves your ActionScript skills. You can also do some ... Read more

Popular Listings

Rasta Ring0 Debugger

Apr 3, 2008 |
PR: 5
RR0D is a ring 0 debugger. It offers the possibility to debug any kind of code (kernel/user/rasta land). Its philosophy is to be OS independent. That's why RR0D can today be installed on Linux, *BSD, ... Read more

ReFox

Apr 3, 2008 |
PR: 3
ReFox is a multi-purpose and easy-to-use utility for viewing and restoring source code from Visual FoxPro 9.0, VFP 8.0, VFP 7.0, VFP 6.0, VFP 5.0, VFP 3.0, FoxPro 2.x, FoxPro 1 and FoxBASE+ compiled ... Read more

Valkyrie

Jan 1, 2011 |
N/A
A Decompiler for Clipper S87 & CA-Clipper 5. Supports CA-Clipper 5.0 through 5.2 ... Read more

REC - Reverse Engineering Compiler

Apr 9, 2008 |
PR: 4
REC is a portable reverse engineering compiler, or decompiler. It reads an executable file, and attempts to produce a C-like representation of the code and data used to build the executable file. ... Read more

Immunity Debugger

Apr 3, 2008 |
PR: 5
Immunity Debugger is a powerful new way to write exploits, analyze malware, and reverse engineer binary files. It builds on a solid user interface with function graphing, the industry's first heap ... Read more

Top

Rasta Ring0 Debugger

Apr 3, 2008 |
PR: 5
RR0D is a ring 0 debugger. It offers the possibility to debug any kind of code (kernel/user/rasta land). Its philosophy is to be OS independent. That's why RR0D can today be installed on Linux, *BSD, ... Read more

ReFox

Apr 3, 2008 |
PR: 3
ReFox is a multi-purpose and easy-to-use utility for viewing and restoring source code from Visual FoxPro 9.0, VFP 8.0, VFP 7.0, VFP 6.0, VFP 5.0, VFP 3.0, FoxPro 2.x, FoxPro 1 and FoxBASE+ compiled ... Read more

Valkyrie

Jan 1, 2011 |
N/A
A Decompiler for Clipper S87 & CA-Clipper 5. Supports CA-Clipper 5.0 through 5.2 ... Read more

REC - Reverse Engineering Compiler

Apr 9, 2008 |
PR: 4
REC is a portable reverse engineering compiler, or decompiler. It reads an executable file, and attempts to produce a C-like representation of the code and data used to build the executable file. ... Read more

Immunity Debugger

Apr 3, 2008 |
PR: 5
Immunity Debugger is a powerful new way to write exploits, analyze malware, and reverse engineer binary files. It builds on a solid user interface with function graphing, the industry's first heap ... Read more

Microsoft Portable Executable and Common Object File Format Specification

Apr 4, 2008 |
PR: 0
This document specifies the structure of executable (image) files and object files under the Microsoft Windows family of operating systems. These files are referred to as Portable Executable (PE) and ... Read more

WiteG's Homepage

Apr 5, 2008 |
PR: 0
Assembler implementations of cryptographic algorithms, crypto tools and also crypto crackmes. ... Read more

Alex Ionescu’s Blog

Apr 4, 2008 |
PR: 5
Alex is a kernel developer, reverse engineer, and Microsoft Student Ambassador. This blog shares Alex’s views and news on Technology, OS Development and Reverse Engineering. ... Read more

PE Format Poster

Jan 15, 2014 |
PR: 1
A PE Format poster in A1 59,4 x 84,1 cm format, including almost all of the structures from PE/PE32+ format (with comments from WinNT.h header file). ... Read more

Syser Debugger

Apr 3, 2008 |
PR: 4
Syser Debugger is designed for Windows NT Family based on X86 platform. It is a core-level debugger with full-graphical interfaces and supports assembly debugging and source code debugging. ... Read more

Peering Inside the PE

Apr 4, 2008 |
PR: 2
A Tour of the Win32 Portable Executable File Format by Matt Pietrek. ... Read more

VB RezQ

Apr 3, 2008 |
PR: 3
VB RezQ can recover source from all types of 32-bit Visual Basic executables i.e .exe, .ocx and .dll files created by VB4(32), VB5 and VB6. ... Read more

Boomerang

Apr 3, 2008 |
PR: 5
This project is an attempt to develop a real decompiler for machine code programs through the open source community. A decompiler takes as input an executable file, and attempts to create a high ... Read more

AutoIt Obfuscator — Obfuscation for AutoIt Script Source Code

Oct 9, 2016 |
PR: 0
Obfuscate your AutoIt script source code & algorithms to protect it against reverse engineering analysis, cracking and decompilation. ... Read more

Ring3 Circus

Apr 10, 2008 |
PR: 1
Diary of a programmer, journal of a hacker. ... Read more

OllyDbg

Apr 3, 2008 |
PR: 5
OllyDbg is a 32-bit assembler level analysing debugger for Microsoft® Windows®. Emphasis on binary code analysis makes it particularly useful in cases where source is unavailable. OllyDbg is a ... Read more

Zeta Debugger

Apr 3, 2008 |
PR: 2
At this moment the debugger supports a several number of debugging formats used by compilers of two most known companies - Borland and Microsoft. ... Read more

diStorm64

Apr 9, 2008 |
PR: 4
diStorm is a binary stream disassembler. It's capable of disassembling 80x86 instructions in 64 bits (AMD64, x86-64) and both in 16 and 32 bits. In addition, it disassembles FPU, MMX, SSE, SSE2, SSE3 ... Read more

Reconstructer

Apr 5, 2008 |
PR: 4
This site primary mirrors my interests on low level stuff like reverse engineering, malware and rootkit research, debugging and troubleshooting applications, as well as software protections and its ... Read more

eXeScope

Apr 3, 2008 |
PR: 4
eXeScope can analyze, display various information, and rewrite resources of executable files, that is, EXE, DLL, OCX, etc. without source files. ... Read more

Jason Geffner

Apr 4, 2008 |
PR: 4
A Reverse Engineer's Blog. ... Read more

Hiew

Apr 3, 2008 |
PR: 4
Hiew is an excellent hex-editor and disassembler with support for PE, PE32+, NE files. ... Read more

TatraDAS

Apr 9, 2008 |
PR: 0
TatraDAS is disassembler of x86 executables which supports PE, NE, MZ, COM, ELF and binary file formats. It includes disassembler, text viewer with syntax highlighting. ... Read more

KaKeeware Application Monitor

Apr 3, 2008 |
PR: 3
KaKeeware Application Monitor is a very small API monitor that allows the user to monitor the APIs called by the given application. KAM supports 5577 different APIs as for now. KAM works as an API spy ... Read more

Uninformed

Apr 5, 2008 |
PR: 5
Uninformed is a technical outlet for research in areas pertaining to security technologies, reverse engineering, and lowlevel programming. The goal, as the name implies, is to act as a medium for ... Read more

Executable and Linkable Format (ELF)

Apr 5, 2008 |
PR: 5
The Executable and Linking Format was originally developed and published by UNIX System Laboratories (USL) as part of the Application Binary Interface (ABI). The Tool Interface Standards committee ... Read more

WinDbg

Apr 3, 2008 |
PR: 5
You can use Debugging Tools for Windows to debug drivers, applications, and services on systems running Windows NT 4.0, Windows 2000, Windows XP, Windows Server 2003, Windows Vista, and Windows Server ... Read more

Hex-Rays

Apr 3, 2008 |
PR: 5
Hex-Rays is a decompiler that transforms binary applications into a high level C-like pseudo code. Unlike disassemblers, which perform the same task at a lower level, the decompiler output is concise ... Read more

OpenRCE

Apr 5, 2008 |
PR: 5
OpenRCE aims to serve as a centralized resource for reverse engineers (currently heavily win32/security/malcode biased) by hosting files, blogs, forums articles and more. ... Read more

AT4RE FastScanner

Sep 19, 2010 |
PR: 1
FastScanner is a Detector for most packers, cryptors and compilers for PE Files Programmed in ASM and designed for ýfast access to most needed plugins. ... Read more

.NET Reflector

Apr 3, 2008 |
PR: 6
Reflector is the class browser, explorer, analyzer and documentation viewer for .NET. Reflector allows to easily view, navigate, search, decompile and analyze .NET assemblies in C#, Visual Basic and ... Read more

Anolis Resourcer

Sep 2, 2009 |
PR: 0
Resourcer is a powerful and flexible resource editor for Microsoft Windows that features full x64 and Vista/Win7 support, in addition to PNG icons and is also free and open-source (GPL). ... Read more

Linice

Apr 3, 2008 |
PR: 3
Linice is an Intel x86-based, Linux source-level kernel debugger with the look and feel of SoftIce for MS Windows. Linice is designed to be used by the people who have SoftIce experience. Linice ... Read more

PEBrowse Professional Interactive

Apr 3, 2008 |
PR: 3
PEBrowse Professional Interactive builds upon the framework presented by PEBrowse Professional to create a very powerful, versatile, and customizable Win32 user mode debugger/disassembler. PEBrowse ... Read more

Breaking Eggs And Making Omelettes

Nov 7, 2008 |
PR: 7
Mike Melanson's blog on multimedia technology and reverse engineering. ... Read more

RDG Packer Detector

Sep 19, 2010 |
PR: 1
RDG Packer Detector is a file detector for exe packers, cryptors, scrabmlers, linkers, file joiners and installers. ... Read more

Visual DuxDebugger

Oct 2, 2010 |
PR: 0
Visual DuxDebugger is a debugger disassembler for Windows 64 bits, it is the first version so it is still very simple, but it has some features that others debuggers doesn’t have, it debugs multiple ... Read more

DFM Editor

Apr 3, 2008 |
PR: 3
DFM Editor allows edit and create Borland Delphi VCL Forms in text and binary format. It is compatible with all Borland Delphi versions (including BDS). DFM Editor can extracts forms from compiled ... Read more

Brian Gladman's Home Page

Apr 5, 2008 |
PR: 5
Cryptographic implementations in C/C++, good, quality code. ... Read more

bannedit's reverse engineering blog

Sep 17, 2010 |
PR: 2
I am a professional security researcher who enjoys working with vulnerabilities. I am fascinated by what causes vulnerable code and the methods used to exploit these flaws. ... Read more

IDA Pro

Apr 3, 2008 |
PR: 6
IDA Pro is a Windows or Linux hosted multi-processor disassembler and debugger that offers so many features it is hard to describe them all. ... Read more

Restorator

Apr 3, 2008 |
PR: 5
Restorator is an utility to edit windows resources in applications and their components, e.g. files with .exe, .dll, .res, .rc, .dcr, extension (see PE files and RES files). ... Read more

Hackman Suite

Apr 3, 2008 |
PR: 0
Hackman Suite is a multi-module all purpose debugging tool. It includes a hex editor, a disassembler, a template editor, a hex calculator and other everyday useful tools to assist programmers and code ... Read more

Joanna Rutkowska

Apr 3, 2008 |
PR: 6
The official blog of Joanna Rutkowska, new rootkit technologies. ... Read more

Nynaeve

Apr 3, 2008 |
PR: 5
Adventures in Windows debugging and reverse engineering. ... Read more

Resource Builder

Apr 3, 2008 |
PR: 4
Resource Builder is the complete solution for Windows resource editing. ... Read more

corkami

Sep 17, 2010 |
N/A
Packers and protectors, antidebugging tricks, assembler. ... Read more

DVLabs Blog

Apr 4, 2008 |
PR: 6
DVLabs blog. ... Read more

Dancho Danchev's Blog

Apr 11, 2008 |
PR: 5
In the overwhelming sea of information, access to timely, insightful and independent open-source intelligence (OSINT) analyses is crucial for maintaining the necessary situational awareness to stay on ... Read more

PureBasic

Apr 10, 2008 |
PR: 5
PureBasic is a programming language based on established BASIC rules. The key features of PureBasic are portability (Windows, AmigaOS and Linux are currently fully supported), the production of very ... Read more

VB Decompiler

Apr 3, 2008 |
PR: 3
VB Decompiler is decompiler for programs (EXE, DLL or OCX) written in Visual Basic 5.0/6.0. As you know, programs in Visual Basic can be compiled into interpreted p-code or into native code. ... Read more

Anti Rootkit Blog

Apr 9, 2008 |
PR: 4
Antirootkit Software, News, Articles and Forums. ... Read more

BugChecker

Mar 7, 2011 |
PR: 2
BugChecker is a single-host kernel debugger for the Microsoft Windows 2000 and XP operating systems. "Single-host" means that the debugger and the debuggee (in this case the whole system, ... Read more

ESET Threat Blog

Apr 3, 2008 |
PR: 5
ESET's blog about new threats in malware world. ... Read more

AniProtect

Apr 18, 2008 |
PR: 0
All AntiRootkit,Rootkit,Virus And AntiVirus. ... Read more

Kaspersky Analyst's Diary

Apr 3, 2008 |
PR: 7
The Analyst's Diary is a weblog maintained by virus analysts from Kaspersky Lab headed by Eugene Kaspersky. Find out more about the authors of this weblog. ... Read more

Hex blog

Apr 3, 2008 |
PR: 5
About IDA Pro, decompilation, programming, binary program anylasis, information security. ... Read more

Microsoft Anti-Malware Engineering Team

Apr 4, 2008 |
PR: 7
This blog provides information about what's happening in the anti-malware technology team at Microsoft. We're the team that builds the core antivirus, antispyware, anti-rootkit, and related ... Read more

TrendLabs Malware Blog

Apr 6, 2008 |
PR: 6
http://blog.trendmicro.com/ ... Read more

010 Editor

Apr 10, 2008 |
PR: 4
A new generation of hex editor capable of parsing a binary file into a data structure for easy editing. ... Read more

MASM32

Apr 10, 2008 |
PR: 4
MASM32 version 9 is a working development for programmers who are interested in either learning or writing 32 bit Microsoft assembler (MASM). ... Read more

Blitz Basic

Apr 10, 2008 |
PR: 5
Blitz3D, BlitzMax and BlitzPlus - a basic language based developement solutions. ... Read more

ReversingLabs

Sep 17, 2010 |
PR: 4
ReversingLabs has been founded with the goal to provide the best file analysis tools and the best software protection tools. Our expertise in building superior software reversing tools, gives ... Read more

SysEye

Sep 19, 2010 |
PR: 3
Utility to control all objects that you see in Windows screen (text, combo boxes, buttons, pictures...). You will be able to enable disabled objects, to hide buttons, to modify menus... Useful utility ... Read more

.NET Resourcer

Apr 3, 2008 |
PR: 6
Resourcer is an editor for .resources binaries and .resX XML file formats used with the .NET platform. Resourcer allows editing of name/string pairs, import of bitmaps/icons and and merging of ... Read more

XN Resource Editor

Apr 3, 2008 |
PR: 0
XN Resource Editor works with all resource files (.RES) and PE modules (.EXE, .DLL, etc.) but it has special knowledge of modules written in Delphi. It can display all the modules that comprise a ... Read more

Offensive Computing

Apr 3, 2008 |
PR: 5
Offensive Computing, LLC was formed by Valsmith and Danny Quist as a resource for the computer security community. The primary emphasis here is on malware collections and analysis for the purpose of ... Read more

KPNC reversing lab

Mar 13, 2009 |
PR: 0
Reverse engineering articles, anti-debugging tricks, many unpublished tips&tricks. ... Read more

F-Secure Weblog

Apr 3, 2008 |
PR: 7
Most Recent News from the F-Secure Lab. ... Read more

PE Explorer

Apr 3, 2008 |
PR: 5
Designed for inspection and editing of Windows executable files, PE Explorer offers powerful static analysis and editing tools for working with EXE, DLL, ActiveX controls, and other executable file ... Read more

VBReFormer

Apr 3, 2008 |
PR: 5
VBReFormer is a solution for recovering the design of each form and control, with all properties, values, all reference to external controls (ActiveX™ libraries), and all pictures. Then with ... Read more

WinHex

Apr 3, 2008 |
PR: 4
WinHex is in its core a universal hexadecimal editor, particularly helpful in the realm of computer forensics, data recovery, low-level data processing, and IT security. An advanced tool for everyday ... Read more

Resource Hacker

Apr 3, 2008 |
PR: 5
Resource Hacker is a freeware utility to view, modify, rename, add, delete and extract resources in 32bit Windows executables and resource files (*.res). It incorporates an internal resource script ... Read more

My infected computer

Apr 3, 2008 |
PR: 3
Various information about malware analysis and reverse engineering. ... Read more

Peter Ferrie

Apr 9, 2008 |
PR: 5
Virtual machines detection, articles with malware analysis for Virus Bulletin. ... Read more

ThreatFire Research Blog

Apr 11, 2008 |
PR: 5
Blog from the threat research team at ThreatFire. ... Read more

McAfee Avert Labs Blog

Apr 3, 2008 |
PR: 7
McAfee's antivirus labs blog. ... Read more

HT Editor

Apr 3, 2008 |
PR: 4
HT is a file editor / viewer / analyzer for executables. The goal is to combine the low-level functionality of a debugger and the usability of IDEs. ... Read more

Sandboxie

Apr 4, 2008 |
PR: 5
Sandboxie runs your applications in an isolated abstraction area called a sandbox. Under the supervision of Sandboxie, an application operates normally and at full speed, but can't effect permanent ... Read more

SysAnalyzer

Sep 19, 2010 |
N/A
SysAnalyzer is an application that was designed to give malcode analysts an automated tool to quickly collect, compare, and report on the actions a binary took while running on the system. The ... Read more

Symantec Security Response Weblog

Apr 3, 2008 |
PR: 6
The Symantec Security Response Weblog has been created to provide a forum for the team to share ideas and commentary on emerging issues and trends. ... Read more

HxD - Freeware Hex Editor and Disk Editor

Apr 10, 2008 |
PR: 4
HxD is a carefully designed and fast hex editor including raw disk editing, modifying foreign RAM and handling files of any size. ... Read more

ASHE - a scripted hex editor

Sep 19, 2010 |
PR: 2
ASHE is a tool to help analyze the structure of any type of disk file. It allows locating and modifying any type of data in a file quickly and easily. Once the structure of a file has been identified, ... Read more

Sunbelt Blog

Apr 3, 2008 |
PR: 6
A blog about activities, products and ideas at Sunbelt Software, one of the leading developers of security software to protect against spyware, spam and other threats. ... Read more

FASM

Apr 10, 2008 |
PR: 5
FASM is an open source assembly language compiler for x86 and x86-64 processors (this includes the AMD64 and Intel EM64T architectures). ... Read more

Free Pascal

Apr 13, 2008 |
PR: 6
Free Pascal (aka FPK Pascal) is a 32 and 64 bit professional Pascal compiler. It is available for different processors: Intel x86, Amd64/x86_64, PowerPC, PowerPC64, Sparc, ARM. ... Read more

ExeInfo PE

Apr 9, 2008 |
PR: 2
Packer and protection detector for executable files. ... Read more

DarkBASIC

Apr 10, 2008 |
PR: 5
DarkBASIC is a commercial game creation programming language released by the United Kingdom based company The Game Creators. The language is a structured form of BASIC and is similar to AMOS on the ... Read more

D for Win32

Apr 13, 2008 |
PR: 6
The D language is statically typed and compiles directly to machine code. It's multiparadigm, supporting many programming styles: imperative, object oriented, and metaprogramming. It's a member of the ... Read more

File Info

Apr 9, 2008 |
PR: 2
File scanner/analyzer. ... Read more

Cygnus Hex Editor

Apr 10, 2008 |
PR: 4
Cygnus Hex Editor is a powerful file editor for Microsoft Windows. ... Read more

fist of god

Sep 17, 2010 |
N/A
This is my humble attempt at sharing questions, ideas, interesting topics and filthy pictures I stumble upon while doing what I do best (and most) – all sorts of geek stuff. I like programming, ... Read more

NASM

Apr 10, 2008 |
PR: 6
The Netwide Assembler, NASM, is an 80x86 and x86-64 assembler designed for portability and modularity. It supports a range of object file formats, including Linux and *BSD a.out, ELF, COFF, Mach-O, ... Read more

WinAsm Studio

PR: 5
WinAsm Studio is a free Integrated Development Environment IDE for developing 32-bit Windows and 16-bit DOS programs using the Assembler. The Microsoft Macro Assembler (MASM) is supported inherently, ... Read more

C++ Tutorials & Reference

Apr 15, 2008 |
PR: 6
C++ Reference, Tutorials, Examples. ... Read more

ThreatExpert Blog

Jul 4, 2008 |
PR: 4
ThreatExpert is an advanced automated threat analysis system designed to analyze and report the behavior of computer viruses, worms, trojans, adware, spyware, and other security-related risks in a ... Read more

FlexHex

Nov 17, 2008 |
PR: 4
FlexHex is a hex editor program specially designed to help you securely edit binary files, OLE compound files, logical devices, and physical drives. Specifically, FlexHEX supports sparse files and ... Read more

j00ru//vx tech blog

Sep 17, 2010 |
PR: 4
As far as I recall, subjects related to programming (C, C++, x86 assembler, Python and so on), reverse engineering, malware analysis (just like the one before), Bughunting (again!), NT OS internals ... Read more

The Customiser

Sep 19, 2010 |
PR: 1
The Customiser allows you to set the position and size of any window, button or other control and set the text of these controls. These changes can be permanently saved for any application and readily ... Read more